A new prompt-injection variant called HashJack exposes a surprising and urgent risk in AI-powered browser assistants: by hiding natural‑language instructions after the “#” fragment in otherwise legitimate URLs, attackers can coerce assistants to produce malicious guidance, insert fraudulent...