Zenity Discloses PerplexedAgent: Calendar Invite Hijacks Perplexity Comet Browser, Steals Credentials
Zenity Labs published a full disclosure today of PerplexedAgent — a zero-click attack chain targeting Perplexity’s Comet agentic browser. The technique requires no user interaction beyond opening a calendar invite. From there, an attacker can hijack the browser, exfiltrate local files, and steal credentials stored in password managers including 1Password. Perplexity has shipped two patches in response (both in February 2026). But Zenity’s disclosure goes beyond a single product vulnerability — the researchers are warning that the attack surface they found is inherent to the agentic browser category, not unique to Comet. ...