The Hacker News

OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration

CNCERT warns OpenClaw AI agent has weak defaults enabling prompt injection and data leaks, prompting China to restrict use on government systems.
Security Boulevard

The Prompt Injection Peril and Why AI Agents Are Your Network’s Newest Vulnerability

As enterprises race to embed AI agents into everyday workflows, a new and still poorly understood threat is moving from research papers into production ...

PointGuard AI Launches Advanced Guardrails to Prevent Indirect Prompt Injection Attacks

New protections inspect documents, metadata, prompts, and responses before AI models can be manipulated Indirect prompt ...
Microsoft

Detecting and analyzing prompt abuse in AI tools

Hidden instructions in content can subtly bias AI, and our scenario shows how prompt injection works, highlighting the need for oversight and a structured response playbook.

When AI Systems Can Act, Prompt Injection Becomes A Security Risk

The moment an AI system can read internal systems, trigger workflows, move money, send emails, update records or approve ...
Futurism

OpenAI’s New AI Browser Is Already Falling Victim to Prompt Injection Attacks

OpenAI unveiled its Atlas AI browser this week, and it’s already catching heat. Cybersecurity researchers are particularly alarmed by its integrated “agent mode,” currently limited to paying ...
Hosted on MSN

OpenAI's new Atlas browser may have some extremely concerning security issues, experts warn - here's what we know

All agentic AI browsers are susceptible to indirect prompt injections Only use agentic browsing when you’re not handling sensitive info We could need to rethink how browsers work, and how we use them ...
Dark Reading

GitLab's AI Assistant Opened Devs to Code Theft

An indirect prompt injection flaw in GitLab's artificial intelligence (AI) assistant could have allowed attackers to steal source code, direct victims to malicious websites, and more. In fact, ...
Search Engine Roundtable

Prompt Injection Added To Bing Webmaster Guidelines

Bing added a new guideline to its Bing Webmaster Guidelines named Prompt Injection. A prompt injection is a type of cyberattack against large language models (LLMs). Hackers disguise malicious inputs ...