Cybersecurity analysts have showcased an innovative prompt injection method known as PromptFix, which deceives a generative artificial intelligence (GenAI) model into performing specific tasks by embedding the harmful command within a deceptive CAPTCHA verification on a website.

Characterized by Guardio Labs as an “AI-era rendition of the ClickFix fraud,” this attack strategy illustrates how AI-powered browsers,