AI 摘要
2025年,攻击者通过邮件对Microsoft 365 Copilot实施社会工程攻击——AI读取并执行了恶意指令,受害者无需任何点击。到2026年,同样的手法正被用于攻击AI智能体(Agent)。为此,OrcaRouter在旗下平台免费提供Firewall(防火墙)和Guardrails(护栏)保护智能体,用户无需改代码,只需在控制台切换开关即可启用。
2026 and we're out here writing security postmortems that start with "the AI was, unfortunately, very helpful"
In 2025, attackers stole corporate data from Microsoft 365 Copilot. The victim clicked nothing. They got an email. The AI read it. The AI obeyed it. In the past...