Prompt Injection Technique – Experimental News Clipping Site

Embrace The Red: How Devin AI Can Leak Your Secrets Via Multiple Means

Aug 7, 2025

—

by

Source URL: https://embracethered.com/blog/posts/2025/devin-can-leak-your-secrets/ Source: Embrace The Red Title: How Devin AI Can Leak Your Secrets Via Multiple Means Feedly Summary: In this post we show how an attacker can make Devin send sensitive information to third-party servers, via multiple means. This post assumes that you read the first post about Devin as well. But here…

Simon Willison’s Weblog: Breaking down ‘EchoLeak’, the First Zero-Click AI Vulnerability Enabling Data Exfiltration from Microsoft 365 Copilot

Jun 11, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Jun/11/echoleak/ Source: Simon Willison’s Weblog Title: Breaking down ‘EchoLeak’, the First Zero-Click AI Vulnerability Enabling Data Exfiltration from Microsoft 365 Copilot Feedly Summary: Breaking down ‘EchoLeak’, the First Zero-Click AI Vulnerability Enabling Data Exfiltration from Microsoft 365 Copilot Aim Labs reported CVE-2025-32711 against Microsoft 365 Copilot back in January, and the fix is…

Simon Willison’s Weblog: Remote Prompt Injection in GitLab Duo Leads to Source Code Theft

May 23, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/May/23/remote-prompt-injection-in-gitlab-duo/ Source: Simon Willison’s Weblog Title: Remote Prompt Injection in GitLab Duo Leads to Source Code Theft Feedly Summary: Remote Prompt Injection in GitLab Duo Leads to Source Code Theft Yet another example of the classic Markdown image exfiltration attack, this time affecting GitLab Duo – GitLab’s chatbot. Omer Mayraz reports on how…

Simon Willison’s Weblog: Model Context Protocol has prompt injection security problems

Apr 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Apr/9/mcp-prompt-injection/#atom-everything Source: Simon Willison’s Weblog Title: Model Context Protocol has prompt injection security problems Feedly Summary: As more people start hacking around with implementations of MCP (the Model Context Protocol, a new standard for making tools available to LLM-powered systems) the security implications of tools built on that protocol are starting to come…

Simon Willison’s Weblog: ChatGPT Operator: Prompt Injection Exploits & Defenses

Feb 17, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Feb/17/chatgpt-operator-prompt-injection/ Source: Simon Willison’s Weblog Title: ChatGPT Operator: Prompt Injection Exploits & Defenses Feedly Summary: ChatGPT Operator: Prompt Injection Exploits & Defenses As expected, Johann Rehberger found some effective indirect prompt injection strategies against OpenAI’s new Operator browser automation agent. Operator tends to ask for confirmation before submitting any information in a form.…

Tag: Prompt Injection Technique

Embrace The Red: How Devin AI Can Leak Your Secrets Via Multiple Means

Simon Willison’s Weblog: Breaking down ‘EchoLeak’, the First Zero-Click AI Vulnerability Enabling Data Exfiltration from Microsoft 365 Copilot

Simon Willison’s Weblog: Remote Prompt Injection in GitLab Duo Leads to Source Code Theft

Simon Willison’s Weblog: Model Context Protocol has prompt injection security problems

Simon Willison’s Weblog: ChatGPT Operator: Prompt Injection Exploits & Defenses