Microsoft Copilot Cowork contained a critical security vulnerability where agentic systems could exfiltrate files through unapproved email messages with external image requests and pre-authenticated OneDrive links. This highlights a major design challenge in building safe autonomous agents: preventing prompt injection attacks from enabling data theft while maintaining agent autonomy.

A critical session isolation vulnerability in DeepSeek exposed user conversations through specific input patterns, highlighting architectural risks in shared backend AI platforms. The article analyzes how different deployment models (local execution like Cursor vs. isolated workspaces vs. shared infrastructure) present different security trade-offs, relevant for engineers choosing AI tools for sensitive work.

Critical vulnerability (CVE-2026-7482, CVSS 9.1) discovered in Ollama enabling unauthenticated memory leaks from the Ollama process, potentially exposing user prompts, system prompts, and environment variables across 300,000+ servers. The article provides technical details on Ollama's API architecture and how the vulnerability works through the /api/create and /api/blobs endpoints.