Hosted on MSN

Prompt injection – and a $5 domain – trick Salesforce Agentforce into leaking sales

A now-fixed flaw in Salesforce’s Agentforce could have allowed external attackers to steal sensitive customer data via prompt injection, according to security researchers who published a ...
Ars Technica

Twitter pranksters derail GPT-3 bot with newly discovered “prompt injection” hack

On Thursday, a few Twitter users discovered how to hijack an automated tweet bot, dedicated to remote jobs, running on the GPT-3 language model by OpenAI. Using a newly discovered technique called a ...
Search Engine Land

Hidden prompt injection: The black hat trick AI outgrew

For a brief moment, hiding prompt injections in HTML, CSS, or metadata felt like a throwback to the clever tricks of early black hat SEO. Invisible keywords, stealth links, and JavaScript cloaking ...
Hosted on MSN

OpenAI's Atlas shrugs off inevitability of prompt injection, releases AI browser anyway

OpenAI's brand new Atlas browser is more than willing to follow commands maliciously embedded in a web page, an attack type known as indirect prompt injection.… Prompt injection vulnerability is a ...
VentureBeat

Shut the back door: Understanding prompt injection and minimizing risk

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now New technology means new opportunities… but ...
Star-News

New CIS Report Warns Prompt Injection Attacks Pose Growing Risk to Generative AI

This report makes clear that technical prompt injections aren’t a theoretical problem, they’re a real and immediate risk.” — TJ Sayers, Senior Director of Threat Intelligence at CIS CLIFTON PARK, NY, ...
Ars Technica

New hack uses prompt injection to corrupt Gemini’s long-term memory

In the nascent field of AI hacking, indirect prompt injection has become a basic building block for inducing chatbots to exfiltrate sensitive data or perform other malicious actions. Developers of ...