OpenAI unveils Lockdown Mode to protect sensitive data from prompt injection attacks

Even with Lockdown Mode, ChatGPT could be still vulnerable to prompt injections, but the goal is to reduce the likelihood ...

Why OpenAI is disabling ChatGPT web access to fight prompt injection attacks

OpenAI has introduced Lockdown Mode for ChatGPT to improve security against prompt injection attacks.
Decrypt

Claude Code Vulnerability Could Let Attackers Steal Credentials From GitHub, Says Microsoft

Researchers say prompt injection attacks could manipulate AI coding agents to access sensitive credentials stored in software ...
Decrypt

What Is an AI Prompt Injection Attack? The Hidden Threat Hijacking Your Chatbots

Hackers can hijack ChatGPT, Claude, and Gemini with nothing but a sentence. OpenAI says the problem may never be fully solved.
CFO Dive

Leading AI models are more vulnerable to malicious prompts than vendors claim

Major AI developers’ model-safety claims rest on incorrect assumptions about how hackers behave, Cisco researchers said in a ...
SecurityWeek

Gemini Voice Assistant Hijacked via Messaging Notifications

A vulnerability in Google’s Gemini voice assistant that could have allowed attackers to hijack the AI using messaging ...
9to5Mac

Researchers detail how a prompt injection attack bypassed Apple Intelligence protections

A now corrected issue allowed researchers to circumvent Apple’s restrictions and force the on-device LLM to execute attacker-controlled actions. Here’s how they did it. Interestingly, they ...
The Hacker News

MFA Prompt Bombing: Why Your Second Factor Isn't Saving You

MFA prompt bombing enabled Cisco attackers to steal 2.8GB in 2022, exposing push MFA weaknesses and account takeover risks.

Cisco report finds no closed frontier AI model is safe from multi-turn attacks

A new report out today from Cisco Systems Inc. argues that none of the closed flagship large language models it tested can be ...