× EU ICT Risk Newsroom DORA News On the Horizon ΑΙ Cybersec Space Cyber Alerts GDPR News EU CERT Advisories ICT Governance ESA/NCAs Contact
Switch to Greek 🔍

ChatGPhish Vulnerability Transforms ChatGPT Summaries into Phishing Attacks

Newsroom - 29 May 2026 - 21:07

Cybersecurity researchers have disclosed details of a vulnerability in OpenAI ChatGPT. This flaw leverages the artificial intelligence (AI) assistant's implicit trust in Markdown links and images. It can trigger prompt injections and open the door to phishing attacks. The technique has been codenamed ChatGPhish by Permiso Security. This highlights the specific nature of the exploit. The core issue is that the chatgpt.

ChatGPhish Vulnerability Transforms ChatGPT Summaries into Phishing Attacks
Cybersecurity researchers have disclosed details of a vulnerability in OpenAI ChatGPT. This flaw leverages the artificial intelligence (AI) assistant's implicit trust in Markdown links and images. It can trigger prompt injections and open the door to phishing attacks. The technique has been codenamed ChatGPhish by Permiso Security. This highlights the specific nature of the exploit. The core issue is that the chatgpt.com response renderer implicitly trusts Markdown links and Markdown formatting.
ChatGPT Phishing Vulnerability ChatGPhish

Subscribe for EU DORA and Banking ICT Risk news and insights