The Actual News

Just the Facts, from multiple news sources.

Now, defenders are embracing the prompt injection, too

Now, defenders are embracing the prompt injection, too

Summary

Researchers at Tracebit have developed a new defense method called "context bombing" to stop attacks by AI hacking agents. This method uses special prompt injections placed alongside secret data that cause attacking AI models to shut down instead of continuing harmful actions.

Key Facts

  • Prompt injections are commands hidden inside content that trick large language models (LLMs) into doing harmful things.
  • Tracebit’s "context bombing" puts these prompt injections with passwords or secret keys in cloud services like Amazon Web Services (AWS).
  • When an attacking AI encounters these prompts, it stops its harmful behavior due to built-in safety rules in the AI.
  • Tests showed a big drop in successful attacks: admin access went from 57% to 5%, and complete system compromise dropped from 36% to 1%.
  • These experiments used five popular AI models, including Opus 4.8 and Gemini 3.1 Pro.
  • The technique helps not only to detect attacks early but also to stop them by making attacking AI refuse to continue.
  • Tracebit also created "canary" AWS resources that alert defenders when attacked by AI agents.
  • The new method improves on previous warnings by actively stopping attacks before they take over systems.
Read the Full Article

This is a fact-based summary from The Actual News. Click below to read the complete story directly from the original source.