Firefox AI Chatbot feature exposed users to email theft risk

wpnews.pro

cd /news/ai-safety/firefox-ai-chatbot-feature-exposed-u… · home › topics › ai-safety › article

[ARTICLE · art-31228] src=discuss.privacyguides.net ↗ pub=2026-06-17T14:06Z topic=ai-safety verified=true sentiment=↓ negative

Firefox AI Chatbot feature exposed users to email theft risk

A vulnerability in Firefox's AI chatbot integration could allow malicious websites to inject hidden instructions into AI prompts and extract data from connected services such as email accounts. Mozilla has implemented mitigations, though researchers say the underlying security issue extends beyond Firefox.

read1 min views1 publishedJun 17, 2026

TL;DR: A vulnerability in Firefox’s AI chatbot integration could allow malicious websites to inject hidden instructions into AI prompts and extract data from connected services such as email accounts. Mozilla has implemented mitigations, though the researchers who discovered the problem say the underlying security issue extends beyond Firefox.

MORE DETAILS:

The flaw was discovered in October 2025[by Florian Port]of German cybersecurity firm ERNW and publicly disclosed on June 16, 2026. It affected Firefox’s AI-powered summarization, explanation, and proofreading features, which can send webpage content to third-party chatbots integrated into the browser’s sidebar.

source & further reading

discuss.privacyguides.net — original article Rakarrack-0.6.1 port making progress! ( AI assisted ) Cloud Storage Poll Welcome to Haiku basic(Haiku Docs, Haiku slide and Haiku sheets)

~/api · this article 200

$curl api.wpnews.pro/v1/news/firefox-ai-chatbot-featu…

Read original on discuss.privacyguides.net → discuss.privacyguides.net/t/firefox-ai-chatbot-f…

mentioned entities

Firefox

Mozilla

Florian Port

ERNW

metadata

slugfirefox-ai-chatbot-feature-exposed-users-to-email-theft-risk

topic#ai-safety

secondary3 topics

sentimentnegative

canonicaldiscuss.privacyguides.net

navigation

← prevLightpanda Agent and PandaScript…

next →Updated Anthropic Privacy Policy…

── more in #ai-safety 4 stories · sorted by recency

blog.mozilla.org · 17 Jun · #ai-safety

Firefox suggests tab groups with local AI (2025)

discuss.privacyguides.net · 17 Jun · #ai-safety

Firefox AI Features

letsdatascience.com · 16 Jun · #ai-safety

Insinuator.net discloses Firefox AI email-exfiltration vulnerability

firefox-source-docs.mozilla.org · 16 Jun · #ai-safety

WarpMonkey

── more on @firefox 3 stories trending now

wpnews · 16 Jun · #ai-agents

The LLM Is Not the Final Authority: Building Trust Infrastructure for AI Agents

wpnews · 16 Jun · #artificial-intelligence

Most Businesses Lose Leads at Night — So I Built This

wpnews · 16 Jun · #ai-safety

Researchers propose causal framework to audit synthetic data

sponsored brought to you by zahid.host 4,200+ EU-deployed projects

reading about agents? ship yours in a single git push.

Run your AI side-project on zahid.host

EU-based hosting, git-push deploys, automatic HTTPS, no cold starts. Free tier with a custom domain — perfect for shipping the agent you just read about.

$git push zahid main

→ Live at https://your-agent.zahid.host ✓

Get free account → Pricing

from €0/mo · no card required