AnalysisCybersecurityJuly 7, 2026

Writer AI flaw allowed cross-tenant session token leakage

Researchers disclosed a now-patched critical session isolation vulnerability in Writer AI that could let agent previews leak session tokens across tenants. The one-click attack, codenamed WriteOut, allowed an attacker to impersonate other users.

1 source