{"data":{"id":"6a6160d6-f1f1-4d98-864d-a3c78ea4e912","title":"v2026.06","summary":"This release document describes updates to security techniques and mitigations related to AI systems, including new attack methods like stealing web session cookies and jailbreaking LLMs (large language models, AI systems trained on massive amounts of text), as well as updated defenses like AI guardrails (safety features that prevent unwanted outputs) and telemetry logging (monitoring system activity). Several new case studies illustrate real-world attacks on AI services, including prompt injection (tricking an AI by hiding malicious instructions in user input) and vulnerabilities in commercial AI products.","solution":"N/A -- no mitigation discussed in source.","labels":["security","research"],"sourceUrl":"https://github.com/mitre-atlas/atlas-data/releases/tag/v2026.06","publishedAt":"2026-06-30T23:21:10.000Z","cveId":null,"cweIds":null,"cvssScore":null,"cvssSeverity":null,"severity":"info","attackType":["prompt_injection","model_theft","jailbreak","data_extraction"],"issueType":"research","affectedPackages":null,"affectedVendors":["Microsoft","Google"],"affectedVendorsRaw":["Azure OpenAI","Google Photos","Microsoft 365 Copilot","Lenovo","Semantic Kernel"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":null,"epssScore":null,"patchAvailable":null,"disclosureDate":"2026-06-30T23:21:10.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["confidentiality","integrity","safety"],"aiComponentTargeted":"api","llmSpecific":true,"classifierConfidence":0.92,"researchCategory":"industry","atlasIds":null}}