Zero‑Click Prompt Injection Hits AI Agents: Inside Zenity’s Black Hat “AgentFlayer” Research—and How to Defend
What if your AI agent leaked API keys, triaged a fake customer request, and pivoted into your CRM—without anyone clicking a thing? That’s the unsettling reality researchers from Zenity demonstrated at Black Hat USA: zero‑click and one‑click prompt injection chains that silently hijack popular enterprise AI tools, from ChatGPT and Microsoft Copilot Studio to Cursor…