this post was submitted on 29 May 2026
42 points (95.7% liked)

Hacker News

4926 readers
344 users here now

Posts from the RSS Feed of HackerNews.

The feed sometimes contains ads and posts that have been removed by the mod team at HN.

Source of the RSS Bot

founded 2 years ago
MODERATORS
patrick@lemmy.bestiver.se
rssbot@lemmy.bestiver.se
42
Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code (arstechnica.com)
submitted 1 day ago by rssbot@lemmy.bestiver.se to c/hackernews@lemmy.bestiver.se
26 comments fedilink hide all child comments
 

Comments

you are viewing a single comment's thread
view the rest of the comments
[–] howrar@lemmy.ca -1 points 1 day ago (2 children)

It's malware as much as a zip bomb is malware. Both serve as input to another program to make it do a specific thing. That thing causes harm on the end user's device. Asking an agent to speak in old English causes no such harm.

[–] obelisk_complex@piefed.ca 2 points 15 hours ago

I appreciate you seeing this for what it is and saying so, where other people are twisting themselves into pretzels to pretend like it's anything else.

[–] deliriousdreams@fedia.io 3 points 1 day ago (2 children)

Malware (a portmanteau of malicious software) is any software intentionally designed to cause disruption to a computer, server, client, or computer network, leak private information, gain unauthorized access to information or systems, deprive access to information, or interfere with the user's computer security and privacy without their knowledge.

Calling this malware is like calling a DDOS attack hacking.

People have been warned about the fact that there is the potential for an AI LLM to take direction from text without the user's knowledge since this tech hit the mainstream. Additionally, it's also not malware when Alexa responds to its name while you're watching a YouTube video.

These people infected their own computers with software that could be externally controlled on purpose. The LLM might be considered malware since it's working as designed, but the plain English isn't.

[–] obelisk_complex@piefed.ca 2 points 14 hours ago (1 children)

intentionally designed to cause disruption to a computer, server, client, or computer network

Actively and deliberately adding text with the explicit purpose of attempting to delete other peoples' work fits this quite nicely, thank you for including it to illustrate my point.

[–] deliriousdreams@fedia.io -1 points 4 hours ago

What work?

[–] howrar@lemmy.ca 1 points 1 day ago (1 children)

Yes, I acknowledge that it isn't malicious software. That's why I compare it to a zip bomb. The important part isn't "software". It's the "malicious". None of what Obelisk said relies on this thing being software.

[–] deliriousdreams@fedia.io -1 points 1 day ago (1 children)

They called it "malware" when this already has a name and it's "prompt injection".

We've been telling everyone for years not to download and run code you don't understand.

We've been telling people since the advent of the AI LLM that prompt injection is a thing and people who use AI LLM's should protect against this.

These AI companies are constantly stealing things from FOSS projects as well as artists and other devs/creators.

Nobody sees a problem with that when it's poisoning LLM's themselves to protect artwork. But now that some idiot who doesn't check code before they execute it etc is crying about it and it's a big deal. I don't see much of a difference here.

If you want the FOSS community to be there for you, don't go out of your way to use the corporate BS that's actively destroying it.

[–] obelisk_complex@piefed.ca 1 points 14 hours ago

If you want the FOSS community to be there for you, don't go out of your way to use the corporate BS that's actively destroying it.

Heheh, and another one of you thought to call me hyperbolic.