Storia in 4 fonti

Copilot, LiteLLM and the AI trust boundary gap

SearchLeak and a three-CVE LiteLLM chain broke the same AI trust boundary in two weeks. A 5-check audit maps each gap to a CVE, a verify command, and a fix.

Raccontata da

Confronto fonti

4 prospettive sulla stessa storia

AI · summaries

venturebeat.comStai leggendo7 h fa

Copilot, LiteLLM and the AI trust boundary gap

SearchLeak and a three-CVE LiteLLM chain broke the same AI trust boundary in two weeks. A 5-check audit maps each gap to a CVE, a verify command, and a fix.

originale

Timeline cronologica

lunedì 15 giugno 2026·darkreading.com
Copilot 'SearchLeak' Attack Allows 1-Click Data Theft
The critical, three-stage attack is now patched, but it's part of a new group of AI prompt-injection issues that use hidden URLs and other variables.
martedì 16 giugno 2026·arstechnica.com
Critical Copilot vulnerability allowed hackers to seal 2FA code from users
SearchLeak exploit shows why the industry's approach to LLM security fails over and over.

darkreading.com

3 g fa

Copilot 'SearchLeak' Attack Allows 1-Click Data Theft

The critical, three-stage attack is now patched, but it's part of a new group of AI prompt-injection issues that use hidden URLs and other variables.

Leggi questa versione → originale

arstechnica.com2 g fa

Critical Copilot vulnerability allowed hackers to seal 2FA code from users

SearchLeak exploit shows why the industry's approach to LLM security fails over and over.

Leggi questa versione → originale

cybersecurity360.it1 g fa

SearchLeak apre la strada al furto dati su Microsoft 365 Copilot

La vulnerabilità SearchLeak dimostra come la combinazione di prompt injection, race condition e SSRF possa trasformare Microsoft 365 Copilot in uno strumento involontario di esfiltrazione dati. Un episodio che conferma…

Leggi questa versione → originale

martedì 16 giugno 2026·

arstechnica.com

Critical Copilot vulnerability allowed hackers to steal 2FA code from users

SearchLeak exploit shows why the industry's approach to LLM security fails over and over.

mercoledì 17 giugno 2026·

cybersecurity360.it

SearchLeak apre la strada al furto dati su Microsoft 365 Copilot

La vulnerabilità SearchLeak dimostra come la combinazione di prompt injection, race condition e SSRF possa trasformare Microsoft 365 Copilot in uno strumento involontario di…

giovedì 18 giugno 2026·

venturebeat.com

Copilot, LiteLLM and the AI trust boundary gap

SearchLeak and a three-CVE LiteLLM chain broke the same AI trust boundary in two weeks. A 5-check audit maps each gap to a CVE, a verify command, and a fix.