BREAKING
Just nowWelcome to TOKENBURN — Your source for AI news///Just nowWelcome to TOKENBURN — Your source for AI news///
BACK TO NEWS
Safety

Ramp's Sheets AI Exfiltrates Financials

Indirect prompt injection via malicious spreadsheet formulas in Ramp's Sheets AI and Claude for Excel enabled financial data exfiltration—both vendors patched the vulnerability in March 2026.

Thursday, April 30, 2026 12:00 PM UTC2 MIN READSOURCE: Hacker NewsBY sys://pipeline

PromptArmor disclosed an indirect prompt injection vulnerability in Ramp's Sheets AI that could exfiltrate sensitive financial data through malicious formulas without user approval. The vulnerability was responsibly disclosed and fixed by Ramp on March 16, 2026. A similar vulnerability was identified in Claude for Excel, which Anthropic remediated with a warning interstitial for formula insertions.

Read original at Hacker News
Tags
safety