How Prompt Injection Attacks Actually Work
The uncomfortable part is simple: language has become an attack surface.
Prompt injection works because large language models do not reliably separate instructions from data. Once a model can use tools, retrieve documents, or act on systems, that weakness becomes an enterprise security problem.