LogoZenity Labs
AI Agent Security Summit (On Demand)
Join Us
Authors
Subscribe
LogoZenity Labs
Oliver Buchannon
Dmitry Lozovoy

Security Researcher at Zenity, specializing in low-code/no-code security. Focuses on identifying vulnerabilities within the Power Platform ecosystem and developing new attack vectors for low-code/no-code applications. Explores AI hacking techniques across platforms like Microsoft 365 Copilot, Copilot Studio, and ChatGPT. An active participant in Microsoft's bug bounty programs, with contributions acknowledged on their public security researcher recognition page. Main areas of interest include cloud security research, API, and web applications.

Security research

AgentFlayer: Minimum Clicks, Maximum Leaks: Tilling ChatGPT’s Attack Surface

Aug 7, 2025

•

7 min read

AgentFlayer: Minimum Clicks, Maximum Leaks: Tilling ChatGPT’s Attack Surface

Exploiting ChatGPT with Language Alone: A Deep Dive into 0Click and 1Click Attacks.

Dmitry Lozovoy
Dmitry Lozovoy
I Just Wanted to Take a Note — and Your Token Came Along

Jul 3, 2025

•

11 min read

I Just Wanted to Take a Note — and Your Token Came Along

Dmitry Lozovoy
Dmitry Lozovoy
The Power of One SSRF Vulnerability: A Multi-Platform Threat

Feb 4, 2025

•

21 min read

The Power of One SSRF Vulnerability: A Multi-Platform Threat

Dmitry Lozovoy
Dmitry Lozovoy

Security research

Outsmarting Copilot: Creating Hyperlinks in Copilot 365

Sep 22, 2024

•

7 min read

Outsmarting Copilot: Creating Hyperlinks in Copilot 365

Dmitry Lozovoy
Dmitry Lozovoy
Zenity Labs

Zenity Labs

Latest research, tools and talks about breaking and building AI systems, agents and assistants


Home

Meet Us

Join Us

© 2026 Zenity Labs.
beehiivPowered by beehiiv