Stav Cohen

Stav Cohen

Security researchSecurity research
PerplexedBrowser: How Attackers Can Hijack Comet to Takeover your 1Password Vault

PerplexedBrowser: How Attackers Can Hijack Comet to Takeover your 1Password Vault

One Calendar Invite. Your Entire Vault. Zero Clicks.

Stav Cohen
Stav Cohen
Security researchSecurity research
PerplexedBrowser: Perplexity’s Agent Browser Can Leak Your PC's Local Files

PerplexedBrowser: Perplexity’s Agent Browser Can Leak Your PC's Local Files

Local Files Are No Longer Safe.

Stav Cohen
Stav Cohen
Security researchSecurity research
Turning Moltbook Into a Global Botnet Map

Turning Moltbook Into a Global Botnet Map

How Untrusted Content Triggered 1,000+ Agent Endpoints Worldwide and Exposed Moltbook’s Faulty Design

Stav Cohen
João Donato
Stav Cohen, +1
Security researchSecurity research
OpenClaw or OpenDoor?

OpenClaw or OpenDoor?

Indirect Prompt Injection makes OpenClaw vulnerable to Backdoors and much more.

Stav Cohen
João Donato
Stav Cohen, +1
Hardening OpenAl's Atlas: The Relentless Challenge of Securing an Untrusted Browser Agent

Hardening OpenAl's Atlas: The Relentless Challenge of Securing an Untrusted Browser Agent

Stav Cohen
Stav Cohen
Security researchSecurity research
Breaking down AgentKit's Guardrails

Breaking down AgentKit's Guardrails

A deep dive into OpenAI's AgentKit guardrails, how they are implemented, and where they fail

Stav Cohen
Stav Cohen
Security researchSecurity research
Analyzing The Security Risks of OpenAI's AgentKit

Analyzing The Security Risks of OpenAI's AgentKit

Stav Cohen
Raul Klugman-Onitza
Stav Cohen, +1