2 verified briefings on Prompt Injection. Each story includes a plain-English summary, why it matters, and the concrete action engineering teams should take.
A developer of the open-source Java testing library `jqwik` intentionally added hidden instructions to sabotage projects built by AI coding agents. This real-world prompt injection attack highlights a new vulnerability in the software supply chain, affecting developers who rely on AI for coding assistance.
Researchers have developed a new attack called CrossMPI that targets multimodal AI models. It uses nearly invisible changes in images to manipulate how the AI interprets both visual and text inputs. This technique bypasses safety measures without altering the original text prompt, creating new security risks.