Microsoft patches AutoJack vulnerability that let malicious webpages hijack AI agents for code execution
Microsoft disclosed AutoJack, a vulnerability chain in AutoGen Studio that allowed attackers to manipulate AI agents into executing arbitrary commands simply by visiting a malicious webpage. The flaw chained three weaknesses in the localhost trust boundary, authentication, and command execution, but was patched before reaching most users.