Key Takeaways
- Cybercriminals are using malicious websites to manipulate AI agents into sending cryptocurrency payments via hidden prompt-injection attacks.
- The attacks rely on indirect prompt injection, embedding invisible instructions in webpages that AI models can read but human users cannot see.
- Four of 26 tested AI models executed unauthorized crypto payments, including Meta’s Llama models and Google’s Gemini models.
Recommended Secure Partners
The information provided in this article is for informational purposes only. It is not intended to be, nor should it be construed as, financial advice. We do not make any warranties regarding the completeness, reliability, or accuracy of this information. All investments involve risk, and past performance does not guarantee future results. We recommend consulting a financial advisor before making any investment decisions.
Giuseppe Ciccomascolo began his career as an investigative journalist in Italy, where he contributed to both local and national newspapers, focusing on various financial sectors.
Upon relocating to London, he worked as an analyst for Fitch's CapitalStructure and later as a Senior Reporter for Alliance News. In 2017, Giuseppe transitioned to covering cryptocurrency-related news, producing documentaries and articles on Bitcoin and other emerging digital currencies. He also played a pivotal role in establishing the academy for a cryptocurrency exchange website. Crypto remained his primary area of interest throughout his tenure as a writer for ThirdFloor.