Skip to main content
SurfaceSURFACE BREAK

AI agent breached McKinsey's internal platform in two hours

Security firm Codewall deployed an autonomous AI agent against McKinsey's internal AI platform Lilli, gaining full production database access in two hours using a decades-old technique — with no credentials, insider knowledge, or human assistance.

VERIFIEDConfidence: 80%

Security firm Codewall deployed an autonomous AI agent against McKinsey's internal AI platform, Lilli, with no credentials, no insider knowledge, and no human assistance. Within two hours, the agent had gained full read and write access to the production database. The attack relied not on novel exploits but on a decades-old technique, raising immediate questions about how enterprise organizations are securing AI systems deployed at scale.

Lilli serves more than 43,000 McKinsey employees across strategy work, client research, and document analysis -- making this a high-impact breach scenario. The demonstration shows that AI agents can now automate the reconnaissance and exploitation steps that previously required a skilled human attacker working over days or weeks. Organizations deploying internal AI platforms may be exposing themselves to attack vectors they have not yet mapped, particularly if security reviews were designed for conventional software and not adversarial AI agents.

Newsletter

Stay informed. The best AI coverage, delivered weekly.

Related

BRIEFSurface

Google's Lyria 3 Pro extends AI music from a jingle to an actual song

Google announced Lyria 3 Pro on March 25, 2026, raising its AI music generator's output limit from 30 seconds to 3 minutes — six times longer than the base model released five weeks ago. The upgrade also teaches the model how songs are structured. That combination moves Lyria from novelty into something closer to a production tool.

BRIEFSurface

OpenAI's next model is nearly ready, and Altman says it can move the economy

OpenAI has completed pre-training on a new model codenamed "Spud," which CEO Sam Altman described to employees as "very strong" and capable of meaningfully accelerating the economy. The release is expected within weeks. The announcement comes with a consequential governance shift: Altman is stepping back from direct oversight of safety and security teams to focus on fundraising and infrastructure.

SIGNALSurface

OpenAI shutters AI video generator Sora

OpenAI has shut down Sora, its AI video generation platform, discontinuing both the consumer app and developer API with no replacement or migration path announced.