Prompt Injection in 2026: The AI Attack Vector That Can't Be Fully Patched
Prompt injection is OWASP's #1 LLM risk for a reason — the model can't tell instructions from data. Here's the 2026 threat model, the direct/indirect/tool-based split, the incidents that reshaped it (EchoLeak, CamoLeak, ForcedLeak, Gemini spoofing, GitLab Duo), and the defense stack that actually works — with cited sources.
Niche: ai cybersecurity agent