The Hacker News

Salesforce Patches Critical ForcedLeak Bug Exposing CRM Data via AI Prompt Injection

ForcedLeak flaw in Salesforce Agentforce allows data exfiltration via indirect prompt injection; Salesforce issues patch.
CSO Online

Vulnerability in Salesforce AI could be tricked into leaking CRM data

Salesforce Agentforce allowed attackers to hide malicious instructions in routine customer forms, tricking the AI into ...