Researchweb securitydom manipulationsocial engineeringlayerx
LayerX Demonstrates Fonts Fool AI Web Assistants
8.2
Relevance Score
Researchers at LayerX report that custom fonts and CSS can visually alter rendered web pages for users while leaving underlying HTML unchanged, enabling attackers to hide malicious instructions from AI web assistants. In tests using a ClickFix phishing proof-of-concept, every tested assistant (including ChatGPT, Gemini, and Copilot) failed to detect hidden text. The flaw enables social-engineering attacks and highlights gaps in assistant security.
Scoring Rationale
Strong cross-platform proof-of-concept raises urgency, but single-vendor disclosure and lack of peer review limit confidence.
Free Career Roadmaps8 PATHS
Step-by-step roadmaps from zero to job-ready — curated courses, salary data, and the exact learning order that gets you hired.
Data Analyst
Explore all career paths $95K
Data Scientist$130K
ML Engineer$155K
AI Engineer$160K
Data Engineer$140K
Analytics Eng.$140K
MLOps Engineer$160K
Quant Analyst$175K
Sources
- Read OriginalCustom Fonts Can Trick AI Assistants Into Approving Phishing Sitesblog.knowbe4.com
