Month: September 2025

Statement from the NCSC in response to reports of an incident impacting nurseries.

Prompt injection has been leveraged alongside an expired domain to steal Salesforce data in an attack named...

Critical flaw ForcedLeak in Salesforce's AgentForce allows CRM data theft via prompt injection

Cybersecurity researchers have disclosed a critical flaw impacting Salesforce Agentforce, a platform for building artificial intelligence (AI)...

Vietnamese phishing campaign evolves from Python infostealer to PureRAT trojan