Google warns malicious web pages are poisoning AI agents

Google researchers have identified a new cybersecurity threat where public web pages are being used to manipulate enterprise AI agents. Malicious actors are embedding hidden instructions within the HTML code of websites, which can then be picked up by AI systems. These 'indirect prompt injections' can hijack the AI's behavior without direct interaction. The discovery was made by security teams analyzing the Common Crawl database, a vast collection of web pages.

This emerging threat highlights a significant vulnerability in how AI agents interact with publicly available information, potentially compromising sensitive business operations.