Microsoft researchers have detailed an exploit chain, namedAutoJack, that turns an AI browsing agent into a delivery vehicle for remote code execution. Steer the agent to load an attacker's web page, and that page's JavaScript can reach a privileged local service on the same machine and spawn a process on the host. No credentials, no sign-in screen, and no further user interaction once
AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution
The Hacker News - 19 Jun 2026 21:00
Microsoft researchers have detailed an exploit chain, namedAutoJack, that turns an AI browsing agent into a delivery vehicle for remote code execution. Steer the agent to load an attacker's web page, and that page's JavaScript can reach a privileged local service on the same machine and spawn a process on the host. No credentials, no sign-in screen, and no further user interaction once
Share this Article
Recommended