Prompt injection has been leveraged alongside an expired domain to steal Salesforce data in an attack named ForcedLeak.
The Register on MSN
Prompt injection – and a $5 domain – trick Salesforce Agentforce into leaking sales
More fun with AI agents and their security holes A now-fixed flaw in Salesforce’s Agentforce could have allowed external ...
Security researchers report that OnePlus smartphone users remain vulnerable to a critical bug that allows any application to ...
Salesforce Agentforce allowed attackers to hide malicious instructions in routine customer forms, tricking the AI into ...
ForcedLeak flaw in Salesforce Agentforce allows data exfiltration via indirect prompt injection; Salesforce issues patch.
Explore vulnerability management and remediation solutions for enterprise SSO and CIAM. Learn to protect your systems from cyber threats with effective strategies.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback