 from OpenAI called “Preventing URL-Based Data Exfiltration in Language-Model Agents”, which goes into detail on new mitigations they’ve added.

> Last week I saw [this paper](https://cdn.openai.com/pdf/dd8e7875-e606-42b4-80a1-f824e4e11cf4/prevent-url-data-exfil.pdf) from OpenAI called “Preventing URL-Based Data Exfiltration in Language-Model Agents”, which goes into detail on new mitigations they’ve added.
>
> ![](https://m.stacker.news/129005)
>
> **This is a great read**. I like this transparency.
>
> ## Initial Disclosure in 2023
> ## Tackling the Problem
> ## What Is the New Mitigation
> ## How Can It Be Bypassed?
> ## Additional Mitigation Ideas
> ## Final Risk - Thorough Adoption of the Mitigation
> 
> [**...read more at embracethered.com**](https://embracethered.com/blog/posts/2026/data-exfiltration-mitigation-paper-by-openai/)

Initial Disclosure in 2023Initial Disclosure in 2023

Tackling the ProblemTackling the Problem

What Is the New MitigationWhat Is the New Mitigation

How Can It Be Bypassed?How Can It Be Bypassed?

Additional Mitigation IdeasAdditional Mitigation Ideas

Final Risk - Thorough Adoption of the MitigationFinal Risk - Thorough Adoption of the Mitigation