2026 • Jan 15
A single click mounted a covert, multistage attack against Copilot
Exploit exfiltrating data from chat histories worked even after users closed chat windows. ...
Article1 min read
Read MoreCategory Archive
Prompt Injections
5 premium articles in this collection
2025 • Sep 19
New attack on ChatGPT research agent pilfers secrets from Gmail inboxes
Unlike most prompt injections, ShadowLeak executes on OpenAI's cloud-based infrastructure. ...
Article1 min read
Read More
2025 • Sep 10
Claude’s new AI file creation feature ships with deep security risks built in
Expert calls security advice "unfairly outsourcing the problem to Anthropic's users." ...
Article2 min read
Read More
2025 • Aug 27
Anthropic’s auto-clicking AI Chrome extension raises browser-hijacking concerns
Malicious websites can embed invisible commands that AI agents will follow blindly. ...
Article1 min read
Read More
2025 • Jul 30
Flaw in Gemini CLI coding tool could allow hackers to run nasty commands
Beware of coding agents that can access your command window. ...
Article1 min read
Read More