Second-Order Prompt Injection Can Turn AI Into a Malicious Insider

Why It Matters

The flaw could turn internal AI assistants into covert data‑theft tools, exposing enterprises to large‑scale information leaks and privilege escalation, highlighting the need for stricter governance of generative AI workflows.