- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
EchoLeak: the zero-click AI heist that rewrote cybersecurity
In June 2025, indirect prompt injection went from a theoretical warning to a live breach — and Microsoft Copilot was the weapon.
EchoLeak was a complete, zero-click compromise of a production AI system. No malware. No phishing. One crafted email, and the AI handed over your confidential files automatically.
What you'll learn:
→ Why LLMs can't distinguish trusted commands from hidden malicious ones
→ The 4-step kill chain: injection → link bypass → zero-click image fetch → CSP evasion
→ How "reference-style markdown" became a data-exfiltration vector
→ The emergency patch Microsoft deployed and why it wasn't enough alone
→ Defense-in-depth: prompt partitioning, output gates, and media proxies
Disclosed by AIM Labs. Microsoft patched May 2025.
Chapters:
0:00 Indirect prompt injection — from theory to reality
1:30 The anatomy of the EchoLeak heist
3:00 Bypassing safeguards step by step
5:00 The patch and layered defenses
6:30 Lessons: the AI trust paradigm shift
Видео EchoLeak: the zero-click AI heist that rewrote cybersecurity канала Freyzo
EchoLeak was a complete, zero-click compromise of a production AI system. No malware. No phishing. One crafted email, and the AI handed over your confidential files automatically.
What you'll learn:
→ Why LLMs can't distinguish trusted commands from hidden malicious ones
→ The 4-step kill chain: injection → link bypass → zero-click image fetch → CSP evasion
→ How "reference-style markdown" became a data-exfiltration vector
→ The emergency patch Microsoft deployed and why it wasn't enough alone
→ Defense-in-depth: prompt partitioning, output gates, and media proxies
Disclosed by AIM Labs. Microsoft patched May 2025.
Chapters:
0:00 Indirect prompt injection — from theory to reality
1:30 The anatomy of the EchoLeak heist
3:00 Bypassing safeguards step by step
5:00 The patch and layered defenses
6:30 Lessons: the AI trust paradigm shift
Видео EchoLeak: the zero-click AI heist that rewrote cybersecurity канала Freyzo
Комментарии отсутствуют
Информация о видео
26 мая 2026 г. 6:39:44
00:08:30
Другие видео канала
Shaders
Why AI Models Confidently Lie??
excel agent skills
Who Is Microsoft Substrate Management??
Adversarial examples in the physical world | paper #5
Multi Hop XPIA Threat
From LLM to Agent Skills: The Core Logic Explained
Stop Saying Please to AI — It's Actually Hurting Your Results
Open GL soloar system
Anthropic's Multi-Agent Research System
The Secret Sharer: Evaluating and TestingUnintended Memorization in Neural Networks
Defending AI from cross-prompt injection(xpia) attacks
Anthropic agents outperform human alignment researchers
Claude Just Did 4x Better Than Anthropic's Own Scientists at Their Own Job
Your AI Assistant Will Always Be Hackable. Here's the Math.
Focus areas for the Anthropic Institute
AI fails biology but beats PhDs
The AI Interrogation Room: Forcing Machine Learning to Confess Its Training Data
Fixing Agents with Non Agentic Data
Hacking the OSI Model: Layer-by-Layer Vulnerabilities & Mitigation
The Petri Donation: Advancing Open-Source AI Alignment Assessment
