Technologist Mag
  • Home
  • Tech News
  • AI
  • Apps
  • Gadgets
  • Gaming
  • Guides
  • Laptops
  • Mobiles
  • Wearables
  • More
    • Web Stories
    • Trending
    • Press Release

Subscribe to Updates

Get the latest tech news and updates directly to your inbox.

What's On
Dimming the sun sounds unhinged, but this new study on El Niño makes a surprisingly good case for it

Dimming the sun sounds unhinged, but this new study on El Niño makes a surprisingly good case for it

11 July 2026
El Niño Is Already Wreaking Havoc on Pacific Fisheries

El Niño Is Already Wreaking Havoc on Pacific Fisheries

11 July 2026
Meta’s addictive Instagram and Facebook design could lead to billions in fines and a forced redesign

Meta’s addictive Instagram and Facebook design could lead to billions in fines and a forced redesign

11 July 2026
China’s Tianwen-2 Space Probe Has Rendezvoused With Earth’s Quasi-Moon

China’s Tianwen-2 Space Probe Has Rendezvoused With Earth’s Quasi-Moon

11 July 2026
Researchers hid a prompt injection inside a PNG, and AI fell for it

Researchers hid a prompt injection inside a PNG, and AI fell for it

11 July 2026
Facebook X (Twitter) Instagram
Facebook X (Twitter) Instagram
Technologist Mag
SUBSCRIBE
  • Home
  • Tech News
  • AI
  • Apps
  • Gadgets
  • Gaming
  • Guides
  • Laptops
  • Mobiles
  • Wearables
  • More
    • Web Stories
    • Trending
    • Press Release
Technologist Mag
Home » Researchers hid a prompt injection inside a PNG, and AI fell for it
Tech News

Researchers hid a prompt injection inside a PNG, and AI fell for it

By technologistmag.com11 July 20263 Mins Read
Researchers hid a prompt injection inside a PNG, and AI fell for it
Share
Facebook Twitter Reddit Telegram Pinterest Email

AI coding assistants like Claude are becoming every developer’s favorite coworker. They can review code, explain confusing functions, and even write entire features with a single prompt. But new research suggests that this growing trust could also become their biggest weakness.

A team of security researchers (professor Sudipta Chattopadhyay and researcher Murali Ediga) has demonstrated an unusual attack that doesn’t target the AI model directly. Instead, it targets what the AI doesn’t pay enough attention to during code reviews. Rather than hiding malicious instructions in lines of code, the researchers tucked them inside an image file. Since many AI review tools treat images as decorative assets rather than as something worth inspecting, the pull request can appear perfectly harmless and sail through the review.

The most dangerous file might be the one you’d never open

Imagine receiving a document with a company logo in the corner. You’d probably glance at it and move on. Now imagine that logo secretly contained instructions telling your AI assistant to open your password vault the next time you used it. That’s essentially the idea behind this proof of concept. The trick doesn’t execute immediately after the code is merged, either. It waits until a developer later asks an AI coding assistant to perform a completely unrelated task, such as creating a helper function or adding a new module. By then, the AI has already absorbed the hidden instructions and can unknowingly access sensitive project files before slipping confidential information into the code it generates.

What’s especially worrying is that the stolen data isn’t dumped into the source code in an obvious way. Instead, it’s disguised as ordinary-looking values that blend in with legitimate code, making them far less likely to trigger existing security tools or catch a developer’s eye during a quick review.

It’s not just about which AI you use

The researchers also found that the outcome wasn’t determined by which large language model was being used. In many cases, the same AI model behaved very differently depending on the coding assistant wrapped around it. Some tools blindly followed the hidden instructions, while others recognized something suspicious and refused to continue. That’s an important distinction because it suggests the problem isn’t limited to a particular chatbot. The real challenge lies in how AI-powered coding platforms decide what information to trust and which project files they’re allowed to access.

AI agents

The good news is that the researchers don’t believe this is an impossible problem to solve. They argue that AI review tools need to become “multimodal” in the truest sense — treating images, documentation, configuration files, and other non-code assets with the same level of scrutiny as source code. If an AI can read a picture, it also needs to understand that the picture could be trying to manipulate it. For developers, this is another reminder that AI coding tools still need supervision. They can dramatically speed up software development, but they also open entirely new attack surfaces that didn’t exist before. The next security risk might not be hidden in thousands of lines of code — it could be sitting inside an image that nobody thought was worth opening.

Share. Facebook Twitter Pinterest LinkedIn Telegram Reddit Email
Previous ArticleWe Make Lovely Home-Cooked Meals for Ourselves. Why Not Do the Same for Our Dogs?
Next Article China’s Tianwen-2 Space Probe Has Rendezvoused With Earth’s Quasi-Moon

Related Articles

Dimming the sun sounds unhinged, but this new study on El Niño makes a surprisingly good case for it

Dimming the sun sounds unhinged, but this new study on El Niño makes a surprisingly good case for it

11 July 2026
El Niño Is Already Wreaking Havoc on Pacific Fisheries

El Niño Is Already Wreaking Havoc on Pacific Fisheries

11 July 2026
Meta’s addictive Instagram and Facebook design could lead to billions in fines and a forced redesign

Meta’s addictive Instagram and Facebook design could lead to billions in fines and a forced redesign

11 July 2026
China’s Tianwen-2 Space Probe Has Rendezvoused With Earth’s Quasi-Moon

China’s Tianwen-2 Space Probe Has Rendezvoused With Earth’s Quasi-Moon

11 July 2026
We Make Lovely Home-Cooked Meals for Ourselves. Why Not Do the Same for Our Dogs?

We Make Lovely Home-Cooked Meals for Ourselves. Why Not Do the Same for Our Dogs?

11 July 2026
The FCC’s latest crackdown could put more than DJI drones at risk in the US

The FCC’s latest crackdown could put more than DJI drones at risk in the US

11 July 2026
Stay In Touch
  • Facebook
  • Twitter
  • Pinterest
  • Instagram
  • YouTube
  • Vimeo

Subscribe to Updates

Get the latest tech news and updates directly to your inbox.

Don't Miss
El Niño Is Already Wreaking Havoc on Pacific Fisheries

El Niño Is Already Wreaking Havoc on Pacific Fisheries

By technologistmag.com11 July 2026

We’re not even one month into “super” El Niño, the natural Pacific weather pattern characterized…

Meta’s addictive Instagram and Facebook design could lead to billions in fines and a forced redesign

Meta’s addictive Instagram and Facebook design could lead to billions in fines and a forced redesign

11 July 2026
China’s Tianwen-2 Space Probe Has Rendezvoused With Earth’s Quasi-Moon

China’s Tianwen-2 Space Probe Has Rendezvoused With Earth’s Quasi-Moon

11 July 2026
Researchers hid a prompt injection inside a PNG, and AI fell for it

Researchers hid a prompt injection inside a PNG, and AI fell for it

11 July 2026
We Make Lovely Home-Cooked Meals for Ourselves. Why Not Do the Same for Our Dogs?

We Make Lovely Home-Cooked Meals for Ourselves. Why Not Do the Same for Our Dogs?

11 July 2026
Technologist Mag
Facebook X (Twitter) Instagram Pinterest
  • Privacy
  • Terms
  • Advertise
  • Contact
© 2026 Technologist Mag. All Rights Reserved.

Type above and press Enter to search. Press Esc to cancel.