A newly discovered vulnerability in Slack AI could allow attackers to exfiltrate sensitive data from private Slack channels.
Cybersecurity researchers responsibly disclosed a vulnerability to Slack that involves manipulating the language model used for content generation.
This vulnerability allows attackers to inject malicious instructions into the public channels they control, even if they are not visible to the target user.
https://cybersecuritynews.com/critical- ... erability/