Security Boulevard

Best of 2025: Indirect prompt injection attacks target common LLM data sources

While the shortest distance between two points is a straight line, a straight-line attack on a large language model isn't always the most efficient — and least noisy — way to get the LLM to do bad ...

Are Copilot prompt injection flaws vulnerabilities or AI limits?

Microsoft has pushed back against claims that multiple prompt injection and sandbox-related issues raised by a security ...
CSOonline

Copilot diagrams could leak corporate emails via indirect prompt injection

A now patched flaw in Microsoft 365 Copilot let attackers turn its diagram tool, Mermaid, into a data exfiltration channel–fetching and encoding emails through hidden instructions in Office documents.
Infosecurity-magazine.com

HashJack Indirect Prompt Injection Weaponizes Websites

Security researchers have discovered a new indirect prompt injection vulnerability that tricks AI browsers into performing malicious actions. Cato Networks claimed that “HashJack” is the first ...
Infosecurity-magazine.com

Gemini Trifecta Highlights Dangers of Indirect Prompt Injection

Network defenders must start treating AI integrations as active threat surfaces, experts have warned after revealing three new vulnerabilities in Google Gemini. Tenable dubbed its latest discovery the ...
BGR

Security Researchers Just Hacked ChatGPT Using A Single 'Poisoned' Document

New findings from a group of researchers at the Black Hat hacker conference in Las Vegas has revealed that it only takes one "poisoned" document to gain access to private data using ChatGPT that has ...
Hosted on MSN

AI browsers face a security flaw as inevitable as death and taxes

Feature With great power comes great vulnerability. Several new AI browsers, including OpenAI's Atlas, offer the ability to take actions on the user's behalf, such as opening web pages or even ...
Redmond Magazine

Prompt Shields AI System Security for Azure OpenAI Now Available

Microsoft has launched Prompt Shields, a new security feature now generally available, aimed at safeguarding applications powered by Foundation Models (large language models) for its Azure OpenAI ...
WinBuzzer

OpenAI Deploys Automated ‘Attacker’ to Harden Atlas Browser, Admits Prompt Injection Is ‘Unsolved’

OpenAI has deployed a new automated security testing system for ChatGPT Atlas, but has also conceded that prompt injection remains an "unsolved" security threat.
DMR News

OpenAI Warns Prompt Injection Attacks Will Persist As Atlas AI Browser Expands

OpenAI says prompt injection attacks remain an unsolved and enduring security risk for AI agents operating on the open web, even as the company rolls out new ...
Hosted on MSN

Boffins build 'AI Kill Switch' to thwart unwanted agents

Computer scientists based in South Korea have devised what they describe as an "AI Kill Switch" to prevent AI agents from carrying out malicious data scraping.… Unlike network-based defenses that ...