prompt injection Archives

Artificial Intelligence

Malicious AI Prompt Injection Attacks Increasing, but Sophistication Still Low: Google

The tech giant found that many indirect prompt injection attempts are harmless, but some malicious exploits have also been identified.

Eduard KovacsApril 27, 2026

Artificial Intelligence

Claude Code, Gemini CLI, GitHub Copilot Agents Vulnerable to Prompt Injection via Comments

A researcher has disclosed the details of the AI attack method he has named ‘Comment and Control’.

Eduard KovacsApril 16, 2026

Artificial Intelligence

OpenAI Launches Bug Bounty Program for Abuse and Safety Risks

Through the new program, OpenAI will reward reports covering design or implementation issues leading to material harm.

Ionut ArghireMarch 27, 2026

Vulnerabilities

GitHub Issues Abused in Copilot Attack Leading to Repository Takeover

Attackers can inject malicious instructions in a GitHub Issue that are automatically processed by Copilot when launching a Codespace from that issue.

Ionut ArghireFebruary 24, 2026

Artificial Intelligence

Google Patches Gemini Enterprise Vulnerability Exposing Corporate Data

GeminiJack is a zero-click Gemini attack that could have been exploited using specially crafted emails, calendar invites, or documents.

Eduard KovacsDecember 10, 2025

Artificial Intelligence

Google Fortifies Chrome Agentic AI Against Indirect Prompt Injection Attacks

Chrome’s new agentic browsing protections include user alignment critic, expanded origin-isolation capabilities, and user confirmations.

Ionut ArghireDecember 8, 2025

Artificial Intelligence

Google Patches Gemini AI Hacks Involving Poisoned Logs, Search Results

Researchers found more methods for tricking an AI assistant into aiding sensitive data theft.

Eduard KovacsSeptember 30, 2025

Artificial Intelligence

Salesforce AI Hack Enabled CRM Data Theft

Prompt injection has been leveraged alongside an expired domain to steal Salesforce data in an attack named ForcedLeak.

Eduard KovacsSeptember 25, 2025

Artificial Intelligence

AI Systems Vulnerable to Prompt Injection via Image Scaling Attack

Researchers show how popular AI systems can be tricked into processing malicious instructions by hiding them in images.

Eduard KovacsAugust 26, 2025

Artificial Intelligence

Google Gemini Tricked Into Showing Phishing Message Hidden in Email

Google Gemini for Workspace can be tricked into displaying a phishing message when asked to summarize an email.

Eduard KovacsJuly 14, 2025

SECURITYWEEK NETWORK:

ICS:

All posts tagged "prompt injection"

Artificial Intelligence

Malicious AI Prompt Injection Attacks Increasing, but Sophistication Still Low: Google

Artificial Intelligence

Claude Code, Gemini CLI, GitHub Copilot Agents Vulnerable to Prompt Injection via Comments

Artificial Intelligence

OpenAI Launches Bug Bounty Program for Abuse and Safety Risks

Vulnerabilities

GitHub Issues Abused in Copilot Attack Leading to Repository Takeover

Artificial Intelligence

Google Patches Gemini Enterprise Vulnerability Exposing Corporate Data

Artificial Intelligence

Google Fortifies Chrome Agentic AI Against Indirect Prompt Injection Attacks

Artificial Intelligence

Google Patches Gemini AI Hacks Involving Poisoned Logs, Search Results

Artificial Intelligence

Salesforce AI Hack Enabled CRM Data Theft

Artificial Intelligence

AI Systems Vulnerable to Prompt Injection via Image Scaling Attack

Artificial Intelligence

Google Gemini Tricked Into Showing Phishing Message Hidden in Email

Featured

ICS/OT

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

Vulnerabilities

Microsoft Patches Exploited Exchange Server Vulnerability

ICS/OT

Critical HVAC and UPS Vulnerabilities Could Let Hackers Disrupt Data Centers

Vulnerabilities

ServiceNow Patches Vulnerability Exploited Against Some Customers

Vulnerabilities

Microsoft Patches 200 Vulnerabilities

Artificial Intelligence

Anthropic Launches Claude Fable 5: Mythos-Class AI With Cybersecurity Guardrails

Artificial Intelligence

Will AI Kill the Bug Bounty Industry?

Latest News

Vulnerabilities

Oracle Addresses PeopleSoft Vulnerability Amid Reports of Zero-Day Attacks

Incident Response

Alert Fatigue Is Becoming a Security Threat of Its Own

Government

CISA Directs Federal Agencies to Prioritize Security Patches Based on Risk

Cybercrime

OnyxC2 Stealer Offers Cybercriminals Enterprise-Grade Theft for $250 a Month

Vulnerabilities

Hackers Exploit Langflow Vulnerability for Remote Code Execution

Government

FBI Seizes 13 Websites That Officials Say Were Used by China to Target and Recruit US Workers

Vulnerabilities

Splunk, Palo Alto Networks Patch Severe Vulnerabilities

Daily Briefing Newsletter