New prompt injection data exfiltration attack today,...

New prompt injection data exfiltration attack today, this time against Slack and Slack AI

It's a bit of a subtle one, but the net effect is that if you can get your malicious tokens into a Slack you can get their AI bot to trick users into exfiltrating private data by clicking on links

My notes here: https://simonwillison.net/2024/Aug/20/data-exfiltration-from-slack-ai/

Original report by PromptArmor here: https://promptarmor.substack.com/p/data-exfiltration-from-slack-ai-via

Like 20 August at 19:49 | Open on fedi.simonwillison.net