The Register on MSN

Prompt injection – and a $5 domain – trick Salesforce Agentforce into leaking sales

More fun with AI agents and their security holes A now-fixed flaw in Salesforce’s Agentforce could have allowed external ...
WeLiveSecurity

Roblox executors: It’s all fun and games until someone gets hacked

For starters, Roblox executors, even the “reputable” (not malicious) ones, violate Roblox’s Terms of Use. The platform’s anti-cheat safeguards, plus community reporting, keep tabs on suspicious ...
The Hacker News

Salesforce Patches Critical ForcedLeak Bug Exposing CRM Data via AI Prompt Injection

ForcedLeak flaw in Salesforce Agentforce allows data exfiltration via indirect prompt injection; Salesforce issues patch.

Unpatched flaw in OnePlus phones lets rogue apps text messages

A vulnerability in multiple OnePlus OxygenOS versions allows any installed app to access SMS data and metadata without ...