Prompt injection is about to feel a lot less like a weird chatbot trick and a lot more like a real consumer and enterprise endpoint problem.Apple’s new Siri AI is designed to understand personal context, answer questions about content on the screen, go to the web for current information, and take action across apps, according to Apple’s WWDC26 announcement. Apple’s broader Apple Intelligence announcement also highlights Visual Intelligence, Safari intelligence, Mail and Messages suggestions, Shortcuts generation, and App Intents.That is the recipe for a much more useful assistant. It is also the recipe for a much larger prompt injection surface.Prompt injection is not just a chatbot issueA lot of people still think prompt injection means typing “ignore all previous instructions” into a chatbot.That is the most obvious version, but it is not the version I worry about most.The scarier version is indirect prompt injection. That happens when the AI reads untrusted content from somewhere…
No comments yet. Log in to reply on the Fediverse. Comments will appear here.