One Prompt HACKED Lenovo’s Chatbot

Researchers uncovered a critical cross-site scripting (XSS) vulnerability in Lenovo’s AI chatbot (reported by CyberNews). With one ~400-character prompt, they instructed the bot to output HTML, triggered a malicious injection...