Zenity Labs Unveils AgentFlayer Vulnerabilities in Major AI Systems

August 09, 2025
Zenity Labs has exposed critical vulnerabilities in AI systems like OpenAI's ChatGPT and Microsoft Copilot, allowing silent hijacking of AI agents without user interaction.

Zenity Labs has revealed significant vulnerabilities in major AI systems, including OpenAI's ChatGPT and Microsoft Copilot, announced in a press release. These vulnerabilities, termed 'AgentFlayer,' allow attackers to silently hijack AI agents without any user interaction, posing a serious threat to enterprise environments.

The research, presented at Black Hat USA 2025, demonstrated how AI agents from vendors like OpenAI, Microsoft, and Salesforce can be compromised to exfiltrate data, manipulate workflows, and act autonomously. Zenity Labs showcased working exploits against widely used AI systems, highlighting the potential for attackers to bypass human oversight entirely.

Key findings include the ability to compromise OpenAI ChatGPT through email-triggered prompt injections, allowing access to connected Google Drive accounts and implanting malicious memories. Similarly, Microsoft Copilot Studio was shown to leak CRM databases, and Salesforce Einstein could be manipulated to reroute communications to attacker-controlled addresses.

Despite some vendors issuing patches following responsible disclosure, others have not addressed these vulnerabilities, citing them as intended functionality. This underscores a critical gap in AI security approaches, as enterprises rapidly adopt AI agents without adequate security controls.

We hope you enjoyed this article.

Consider subscribing to one of our newsletters like Cybersecurity AI Weekly or Daily AI Brief.

Also, consider following us on social media:

Cybersecurity AI AI Brief AI Brief (X)

More from: Cybersecurity

08/09
Manifest Introduces AI Risk Transparency Solution
08/09
Straiker Unveils Attack and Defense Agents for AI Security
08/09
Gurucul Introduces AI-SOC Analyst for Enhanced Threat Detection
08/09
AccuKnox and SecuVerse.ai Partner for LONACI's Zero Trust Security
08/09
IQSTEL and Cycurion Form AI-Driven Cybersecurity Alliance

Subscribe to Cybersecurity AI Weekly

Weekly newsletter about AI in Cybersecurity.

AI Token Webinar

Market report

2025 Generative AI in Professional Services Report

Thomson Reuters

This report by Thomson Reuters explores the integration and impact of generative AI technologies, such as ChatGPT and Microsoft Copilot, within the professional services sector. It highlights the growing adoption of GenAI tools across industries like legal, tax, accounting, and government, and discusses the challenges and opportunities these technologies present. The report also examines professionals' perceptions of GenAI and the need for strategic integration to maximize its value.

Read more

You May Also Like