Breaking4 min read
AI Security Agent Breaches McKinsey's Internal Platform in Two Hours Using SQL Injection
A Codewall offensive AI agent gained full read and write access to McKinsey's internal AI platform Lilli — exposing 46.5 million chat messages, 728,000 files, and 57,000 user accounts — without credentials or insider access, raising alarms about enterprise AI security.
Priya Sharma4 min read