‘GrafanaGhost’ vulnerability allowed for silent data exfiltration through AI workflows

Dubbed “GrafanaGhost,” the vulnerability could have let an attacker bypass both client-side protections and AI guardrails to send private data from a Grafana environment to an external server without ...
SiliconANGLE

The role of data loss prevention tools in protecting against AI data exfiltration

Data loss prevention solutions have become an important tool in the chief information security officer’s toolbox with the rise in popularity of generative artificial intelligence in the enterprise.
CSOonline

Copilot diagrams could leak corporate emails via indirect prompt injection

A now patched flaw in Microsoft 365 Copilot let attackers turn its diagram tool, Mermaid, into a data exfiltration channel–fetching and encoding emails through hidden instructions in Office documents.