Security researchers at Radware say they've identified several vulnerabilities in OpenAI's ChatGPT service that allow the ...

That's according to researchers from Radware, who have created a new exploit chain it calls "ZombieAgent," which demonstrates ...

OpenAI develops automated attacker system to test ChatGPT Atlas browser security against prompt injection threats and ...

Security researchers have discovered a new indirect prompt injection vulnerability that tricks AI browsers into performing malicious actions. Cato Networks claimed that “HashJack” is the first ...

New findings from a group of researchers at the Black Hat hacker conference in Las Vegas has revealed that it only takes one "poisoned" document to gain access to private data using ChatGPT that has ...

Microsoft has pushed back against claims that multiple prompt injection and sandbox-related issues raised by a security ...

For a brief moment, hiding prompt injections in HTML, CSS, or metadata felt like a throwback to the clever tricks of early black hat SEO. Invisible keywords, stealth links, and JavaScript cloaking ...

A new report out today from network security company Tenable Holdings Inc. details three significant flaws that were found in Google LLC’s Gemini artificial intelligence suite that highlight the risks ...

As a new AI-powered Web browser brings agentics closer to the masses, questions remain regarding whether prompt injections, the signature LLM attack type, could get even worse. ChatGPT Atlas is OpenAI ...

Network defenders must start treating AI integrations as active threat surfaces, experts have warned after revealing three new vulnerabilities in Google Gemini. Tenable dubbed its latest discovery the ...

A now patched flaw in Microsoft 365 Copilot let attackers turn its diagram tool, Mermaid, into a data exfiltration channel–fetching and encoding emails through hidden instructions in Office documents.