Analyzing The Security Risks of OpenAI's AgentKit

Prompt Mines: 0-Click Data Corruption In Salesforce Einstein

AgentFlayer: Minimum Clicks, Maximum Leaks: Tilling ChatGPT’s Attack Surface

Exploiting ChatGPT with Language Alone: A Deep Dive into 0Click and 1Click Attacks.

AgentFlayer: ChatGPT Connectors 0click Attack

AgentFlayer: When a Jira Ticket Can Steal Your Secrets

TL;DR: A 0click attack through a malicious Jira ticket can cause Cursor to exfiltrate secrets from the repository or local file system.

AgentFlayer: When AIjacking Leads to Full Data Exfiltration in Copilot Studio

EchoLeak: A Reminder That AI Agent Risks Are Here to Stay

AgentFlayer: Discovery Phase of AI Agents in Copilot Studio

AI Agents & 0-Click Exploits: The New Battle Ground for AI Security

Zenity Research Published at RSAC 2025

Copilots and agents are a new access vector; How to build an AppSec program that scales to the level of citizen development

Links and materials for Scaling AppSec With an SDLC for Citizen Development

Links, demos, tools and slides for RSAC 2025

Links and materials for Your Copilot Is My Insider

Links, demos, tools and slides for RSAC 2025