← Back to Home

Tag: 数据泄露 (2 articles)

OpenAI Help: Lockdown Mode

Lockdown Mode uses deterministic rules to block outbound requests, cutting off the data exfiltration vector in prompt injection attacks and implicitly revealing the weakness of default ChatGPT security.

Simon Willison · Jun 6, 2026

Microsoft Copilot Cowork Exfiltrates Files

A critical security flaw in Microsoft Copilot Cowork allowed attackers to exfiltrate user files via prompt injection by exploiting auto-sent emails and pre-authenticated download links.

Simon Willison ·