How We Hacked McKinsey’s AI Platform — CodeWall.ai

Article claims: An autonomous offensive agent successfully hacked McKinsey’s AI platform, Lilli, within two hours by exploiting an unauthenticated SQL injection vulnerability, gaining read and write access to its production database. The breach exposed millions of chat messages, sensitive files, user accounts, and the platform’s proprietary knowledge base, highlighting the critical vulnerability of AI prompt layers.

Edward Kiledjian @ekiledjian