Crypto Ticker:
sysadmin from Cyber Security News

New Ghostcommit Attack Hides Malicious Prompts in Images to Exploit AI Agents

Guru Baran
4 hours ago
4 Views
0 Comments
New Ghostcommit Attack Hides Malicious Prompts in Images to Exploit AI Agents

A novel supply chain attack called “Ghostcommit” that conceals prompt-injection instructions within PNG images to bypass AI code reviewers and trick coding agents into leaking secrets such as .env files. The ASSET Research Group demonstrated that a pull request containing an explicit, plain-text instruction to exfiltrate a...

Read the full article at the source.

Was this helpful?
Share:

Comments (0)

Please login to post a comment

No comments yet. Be the first to comment!