←back to thread

Hidden risk in Notion 3.0 AI agents: Web search tool abuse for data exfiltration

(www.codeintegrity.ai)
156 points abirag | 1 comments | 19 Sep 25 21:49 UTC | HN request time: 0.335s | source
Show context
nwellinghoff ◴[19 Sep 25 23:06 UTC] No.45307850[source]
How does a random user get a document in your notion instance?
replies(5): >>45307876 #>>45307919 #>>45308473 #>>45308804 #>>45310975 #
1. memothon ◴[20 Sep 25 00:27 UTC] No.45308473[source]
Lots of companies have automations with Zapier etc. to upload things like invoices or other documents directly to notion. Or someone gets emailed a document with an exploit and they upload it.