#shadowleak

[ follow ]
#prompt-injection #data-exfiltration #deep-research #zero-click #email-exfiltration #cloud-security
Information security
fromThe Hacker News
2 days ago

ShadowLeak Zero-Click Flaw Leaks Gmail Data via OpenAI ChatGPT Deep Research Agent

A zero-click HTML prompt-injection (ShadowLeak) in ChatGPT Deep Research allowed exfiltration of Gmail inbox data via a single crafted email without user interaction.
Information security
fromTheregister
3 days ago

OpenAI plugs ShadowLeak bug in ChatGPT

A Deep Research flaw, ShadowLeak, allowed attackers to exfiltrate Gmail data from inboxes via hidden HTML commands executed on OpenAI's servers.
fromArs Technica
4 days ago

New attack on ChatGPT research agent pilfers secrets from Gmail inboxes

Accordingly, OpenAI mitigated the prompt-injection technique ShadowLeak fell to-but only after Radware privately alerted the LLM maker to it. A proof-of-concept attack that Radware published embedded a prompt injection into an email sent to a Gmail account that Deep Research had been given access to. The injection included instructions to scan received emails related to a company's human resources department for the names and addresses of employees. Deep Research dutifully followed those instructions.
Information security
Information security
fromSecurityWeek
4 days ago

ChatGPT Deep Research Targeted in Server-Side Data Theft Attack

ShadowLeak is a server-side data exfiltration method targeting ChatGPT's Deep Research, enabling silent extraction of inbox data via attacker-controlled URLs without user interaction.
[ Load more ]