Session Cache Leaks Between Workspace Instances and Consumer Accounts
A recent report has raised significant security concerns regarding cross-session data leakage within enterprise artificial intelligence workspace environments. Users operating within the Enterprise ZDR platform have documented instances where agent sessions appear to inherit context or prompts from unrelated workspaces, including free-tier consumer accounts. In one reported case, an authenticated enterprise model unexpectedly generated detailed instructions for constructing a Minecraft temple, a subject entirely unrelated to the user active development task. The incident indicates a potential breakdown in session isolation mechanisms, prompting scrutiny over whether cached conversation data or active prompts are persisting across tenant boundaries. Although users acknowledged local configuration misalignments causing directory-related context pollution, the external prompt contamination points to a more critical architectural vulnerability. If enterprise environments are inadvertently accessing or inheriting prompts from isolated consumer accounts, the implications for data privacy, intellectual property protection, and secure model inference become substantial. Platform developers are expected to audit workspace segmentation protocols and cache management systems to prevent unauthorized context propagation. Until updated safeguards are deployed, organizations relying on these AI development tools will face increased compliance challenges regarding how session data is stored, partitioned, and cleared across different user tiers.
