Brave disclosed security vulnerabilities in AI browsers that could let malicious sites access user banking and email accounts. Indirect prompt injection attacks let websites embed hidden instructions.