ChatGPT hit by a zero-click, server-side vulnerability that criminals can use to siphon sensitive data - here's how to stay safe

ShadowLeak allows attackers to exfiltrate sensitive data without user interaction, highlighting AI security risks.
SecurityWeek

ChatGPT Targeted in Server-Side Data Theft Attack

Researchers at web security company Radware recently discovered what they described as a service-side data theft attack ...

CData links AI systems to more than 300 data sources

CData, which has raised over $500 million in venture capital and private equity funding, provides real-time access to more ...

MULTIMEDIA UPDATE - Radware Uncovers First Zero-Click, Service-Side Vulnerability in ChatGPT

New ShadowLeak exploit directs ChatGPT’s Deep Research agent to exfiltrate sensitive customer data autonomously, from OpenAI ...
adexchanger

The IAB Tech Lab Is Launching A Server-Side Solution For Programmatic To Bypass Bossy Browsers

The IAB Tech Lab is having its Howard Beale moment with the web browsers. “We’re mad as hell, and we’re not going to take it anymore,” said IAB Tech Lab CEO Tony Katsur. Through excessive limitations ...
CSOonline

Azure API Management flaws highlight server-side request forgery risks in API development

Microsoft recently patched three vulnerabilities in its Azure API Management service, two of which enabled server-side request forgery (SSRF) attacks that could have allowed hackers to access internal ...
Bleeping Computer

YouTube tests harder-to-block server-side ad injection in videos

Post updated on 6/14 to add a comment from Google confirming the reports about experimentation with alternative ad injection methods. YouTube reportedly now injects ads directly into video streams to ...

Radware Uncovers First Zero-Click, Service-Side Vulnerability in ChatGPT

New ShadowLeak exploit directs ChatGPT’s Deep Research agent to exfiltrate sensitive customer data autonomously, from OpenAI ...