The Silent Leak: How URL Previews in LLM-Powered Tools Are Quietly Exfiltrating Sensitive Data - WebProNews

Security researchers have identified a vulnerability where prompt injection attacks in LLM-powered applications can weaponize URL preview features to silently exfiltrate sensitive data. Attackers can craft malicious prompts that cause the LLM to generate URLs containing extracted confidential information, which is then transmitted to an attacker-controlled server when the application automatically fetches the URL preview.