Analysis

Recent findings from AI security firm Zenity, presented at the Black Hat conference, reveal significant security vulnerabilities across major enterprise AI platforms, introducing a new vector of risk for investors in the technology sector. The research demonstrated that AI assistants from Microsoft (Copilot), Alphabet (Gemini), Salesforce (Einstein), and integrations with Atlassian's Jira are susceptible to prompt injection attacks. These exploits are not theoretical; they enable threat actors to exfiltrate sensitive corporate data, such as an entire CRM database via Copilot Studio or API keys from Google Drive, and manipulate critical business processes like rerouting customer communications through Salesforce Einstein. The vendor response to these disclosures is a key differentiating factor for assessing risk. While vulnerabilities in ChatGPT and Microsoft's Copilot Studio were reportedly patched, other critical flaws were designated as 'won't fix' by vendors, creating a persistent and unmitigated threat, reflected in the more negative sentiment scores for Salesforce (-0.7) and Atlassian (-0.7). Google's statement acknowledges the issue but frames it as primarily a subject of academic research, while also claiming to have deployed new defenses, leading to a more tempered negative sentiment (-0.2). This situation underscores a critical tension: the rapid enterprise adoption of generative AI for productivity is outpacing the development of robust security guardrails, exposing vendors and their clients to material operational and reputational risks.