ChatGPT falls to new data-pilfering attack as a vicious cycle in AI continues

There’s a well-worn pattern in the development of AI chatbots. Researchers discover a vulnerability and exploit it to do ...
Hosted on MSN

Cl0p cybercrime gang's data exfiltration tool found vulnerable to RCE attacks

Security experts have uncovered a hole in Cl0p's data exfiltration tool that could potentially leave the cybercrime group vulnerable to attack.… The vulnerability in the Python-based software, which ...
CSOonline

Copilot diagrams could leak corporate emails via indirect prompt injection

A now patched flaw in Microsoft 365 Copilot let attackers turn its diagram tool, Mermaid, into a data exfiltration channel–fetching and encoding emails through hidden instructions in Office documents.
Business Wire

Coveware by Veeam Reveals Q2 2025 Ransomware Surge: Social Engineering and Data Exfiltration Drive Record Payouts

SEATTLE--(BUSINESS WIRE)--Coveware by Veeam ®, the leading authority in ransomware response and cyber extortion trends, today unveiled its Q2 2025 ransomware report, spotlighting a dramatic escalation ...
Infosecurity-magazine.com

Zero-Click Vulnerability in ChatGPT's Agent Enables Silent Gmail Data Theft

A vulnerability in ChatGPT Deep Research agent allows an attacker to request the agent to leak sensitive Gmail inbox data with a single crafted email, according to Radware. Deep Research is an ...
Infosecurity-magazine.com

Ransomware Actor Deletes Data and Backups Post-Exfiltration on Azure

A threat actor has destroyed data and backups following exfiltration in a victim’s Microsoft Azure environment in a novel cloud-based ransomware attack. Microsoft Threat Intelligence recently provided ...