Indirect Prompt Injection in Web Content Targets AI Agents
Zscaler found sites hiding prompt-injection text to manipulate AI agents into crypto payments
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
Zscaler found sites hiding prompt-injection text to manipulate AI agents into crypto payments
Hidden prompts on malicious websites trick AI agents into making payments or trusting fake sites, exposing new risks for autonomous AI workflows. Zscaler ThreatLabz documented two active campaigns that embed hidden instructions in web pages to manipulate AI agents, not human users, though those get caught too. The technique is called indirect prompt injection: malicious […]
Zscaler CEO Jay Chaudhry Says New AI Frontier Models Have Yet to Boost RevenueZscaler reported strong renewal growth and rising demand for zero trust security amid AI-driven threats, but slowing new customer acquisition, sales leadership turnover and cautious expectations for Red Canary integration weighed on investor confidence.
Startup Symmetry Systems Maps Relationships Across AI, SaaS and Cloud AssetsZscaler plans to acquire San Francisco-based Symmetry Systems to unify visibility across AI models, identities, applications and datasets, helping enterprises track AI lineage, govern agentic identities and enforce granular zero trust controls across cloud and SaaS environments.
Zscaler's Ravi Monga on Managing AI Risks in Clinical EnvironmentsHealthcare organizations are increasingly adopting AI for efficiency and patient care, but governance is lagging behind. Zscaler's Healthcare CISO Ravi Monga explains why visibility into AI usage, including shadow AI, has become the sector's most urgent cybersecurity challenge.
Zscaler's Jay Chaudhry on Infrastructure, Agents and OversightZscaler CEO Jay Chaudhry explains why distributed infrastructure and zero trust models will shape AI security, the agent risks mirroring human threats and why strong oversight and identity validation remain essential for mission-critical applications.
Zscaler ThreatLabz assessed with medium to high confidence that an Iranian adversary targeted Iraq’s Ministry of Foreign Affairs in a new cyber-attack
Zscaler analysts found critical vulnerabilities in 100% of enterprise AI systems, with 90% compromised in under 90 minutes
November 2025 saw cybersecurity giants like Palo Alto Networks, Bugcrowd and Zscaler invest in AI-powered security solutions
Acquisition Boosts AI Defense from Red-Teaming, Risk Scoring to Compliance TrackingThe SPLX acquisition gives Zscaler new tools for red-teaming, AI governance and pre-deployment risk analysis. The deal will strengthen Zscaler's push to provide comprehensive GenAI protection, from cloud model discovery to runtime guardrails and ongoing compliance reporting.
Full Breach Scope Remains Unclear; Hundreds of Organizations Reportedly AffectedThe scope of the Salesloft Drift data breach continues to expand, now counting Cloudflare, Zscaler, Palo Alto Networks as victims and what investigators say are many hundreds more organizations that connected their Salesforce, Google Workspace or other tools to Salesloft's AI chatbot.
'Widespread Data Theft Campaign' Compromised Many Drift OAuth Tokens, Warn ExpertsThreat researchers report that "a widespread data theft campaign" traces to attackers stealing OAuth access tokens for applications integrated with Salesloft's AI chatbot Drift, then exfiltrating data. Victims include Salesforce customer Zscaler. Google Workspace instances were also breached.
Zscaler Global CISO Sam Curry on the Changing Demands of Cybersecurity LeadershipThe responsibilities of a modern CISO extend far beyond preventing breaches. For Sam Curry, Zscaler's global CISO, the role now requires both strategic security leadership and technical vision.
CEO Hitesh Sheth: New AI Offerings Boost Efficiency, Address Modern Network NeedsPresident and CEO Hitesh Sheth details how Vectra AI uses triage, stitching and prioritization agents to enhance SOC performance and curb alert fatigue. The network detection and response vendor is expanding AI Analyst via AWS Bedrock and integrations with Zscaler and CrowdStrike.
CEO Hitesh Sheth: New AI Offerings Boost Efficiency, Address Modern Network NeedsPresident and CEO Hitesh Sheth details how Vectra AI uses triage, stitching and prioritization agents to enhance SOC performance and curb alert fatigue. The network detection and response vendor is expanding AI Analyst via AWS Bedrock and integrations with Zscaler and CrowdStrike.
The 2025 Data Risk Report: Enterprises face potentially serious data loss risks from AI-fueled tools. Adopting a unified, AI-driven approach to data security can help
Red Canary Purchase Aims to Deliver Agentic AI-Powered Security Operations at ScaleZscaler’s buy of Red Canary will unify its cloud-based security infrastructure with Red Canary’s MDR insights, giving rise to a next-gen SOC built on automation, AI, and rapid detection expertise. The integration will support a proactive SOC experience powered by AI workflows and security expertise.
The August acquisition will bring together Red Canary's extensive integration ecosystem with Zscaler's cloud transaction data to deliver an AI-powered security operations platform.
Zscaler's Jay Chaudhry on Visibility and Policy Enforcement to Secure AI UsageOrganizations face significant risks when employees use public AI tools without governance, but security platforms can provide visibility, policy controls and data protection to safeguard sensitive information from unauthorized exposure, said Jay Chaudhry, founder, chairman and CEO, Zscaler.
Cybersecurity researchers have discovered an updated version of a malware loader called Hijack Loader that implements new features to evade detection and establish persistence on compromised systems