CSO Online

Zero‑click Grafana AI attack can enable enterprise data exfiltration

By combining indirect prompt injection with client-side bypasses, attackers can force Grafana to leak sensitive data through routine image requests.
Dark Reading

Grafana Patches AI Bug That Could Have Leaked User Data

By hiding malicious instructions on an attacker-controlled Web page, AI could ingest orders as benign and return sensitive ...
InfoQ

Prompt Injection for Large Language Models

Your LLM-based systems are at risk of being attacked to access business data, gain personal advantage, or exploit tools to the same ends. Everything you put in the system prompt is public data.

Indirect Injection and Multi-Modal Attacks: Poisoning the Pipeline

Indirect prompt injection represents a more insidious threat: malicious instructions embedded in content the LLM retrieves ...
Des Moines Register

Hosted.com Examines Prompt Injection Threats Affecting Websites Using AI

Hosted.com examines the growing risk of prompt injection attacks to businesses using AI tools, including their potential impact, and ways to reduce exposure. Businesses rely on AI more than ever. When ...