Noma Labs discovered the ForcedLeak AI agent vulnerability chain which allows external attackers to exfiltrate sensitive CRM data through an indirect prompt injection attack, using a whitelisted domain that cost $5. This agentic vulnerability extends far beyond simple data theft. Attackers can manipulate CRM records, establish persistent access, and target any organization using AI-integrated business tools.
Read More
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.
Noma Labs is a team of elite AI security researchers dedicated to uncovering enterprise AI vulnerabilities before attackers do. We’re using our deep AI vulnerability research to provide organizations the knowledge and tools they need to enable AI innovation securely.
