News

Microsoft fixes first known zero-click attack on an AI agent
EchoLeak affected Microsoft 365 Copilot, the AI assistant integrated across several Office applications, including Word, ...
SecurityWeek1d
Fortinet, Ivanti Patch High-Severity Vulnerabilities
Patches released by Fortinet and Ivanti resolve over a dozen vulnerabilities, including high-severity flaws leading to code execution.
Critical vulnerability in Microsoft 365 Copilot shows risk of AI agents
The M365 AI agent could be tricked into releasing sensitive information via email and without a mouse click. Microsoft has ...
Salesforce changes Slack API terms to block bulk data access for LLMs
Salesforce’s Slack platform has changed its API terms of service to stop organizations from using Large Language Models (LLMs ...
CSO Online1d
June Patch Tuesday advice for CSOs: Defense-in-depth needed to stop RCEs
CVE-2025-47172 , a remote code execution vulnerability in Microsoft SharePoint Server. With a CVSS score of 8.8, he said this ...
Salesforce tags 5 CVEs after SaaS security probe uncovers misconfig risks
Salesforce has assigned five CVE identifiers following a security report that uncovered more than 20 configuration weaknesses ...
CPO Magazine1d
Google Warns Salesforce Customers of Large-Scale Vishing Attacks
Google warns Salesforce customers about vishing attacks by hackers impersonating IT support to lure employees into connecting ...
Meet 10 AI trailblazers who are steering their companies into tech's new age
BI's list of business leaders spans various sectors. All are helping their companies drive AI adoption while navigating data ...
Exclusive: New Microsoft Copilot flaw signals broader risk of AI agents being hacked—’I would be terrified’
Microsoft 365 Copilot, the AI tool built into Microsoft Office workplace applications including Word, Excel, Outlook, ...
Le Lézard1d
Public Sector Application Risk Accumulates as Security Debt Grows Across Government Systems
Veracode, a global leader in application risk management, today released its Public Sector State of Software Security 2025 report, revealing alarming trends in software security across government ...
Infosecurity Magazine2d
Researcher Finds Five Zero-Days and 20+ Misconfigurations in Salesforce Cloud
The products affected by the issues are part of the Salesforce OmniStudio suite, including FlexCards and Data Mappers ...
The Hacker News2d
Researchers Uncover 20+ Configuration Risks, Including Five CVEs, in Salesforce Industry Cloud
Salesforce Industry Cloud has 20+ config risks exposing sensitive data; customers must fix most issues to avoid compliance ...