Date: 03/05/2026
Severity: High
Summary
Large language models (LLMs) and AI agents are increasingly integrated into browsers, search engines, and automated content-processing systems. While this expands functionality, it also introduces a new and largely unexplored attack surface. A key threat is indirect prompt injection (IDPI), where attackers hide malicious instructions within website content that is later processed by an LLM. Instead of interacting with the model directly, attackers exploit features like webpage summarization or content analysis. This can cause the LLM to unknowingly execute attacker-controlled prompts, with impact depending on the system’s privileges and sensitivity. Real-world telemetry now shows that IDPI attacks are actively being weaponized by malicious websites with previously undocumented attacker intentions.
Indicators of Compromise (IOC) List
Domains\URLs : | 1winofficialsite.in cblanke2.pages.dev dylansparks.com ericwbailey.website/published/accessibility-preference-settings-information-architecture-and-internalized-ableism leroibear.com llm7-landing.pages.dev/_next/static/chunks/app/page-94a1a9b785a7305c.js myshantispa.com perceptivepumpkin.com reviewerpress.com/advertorial-maxvision-can/?lang=en reviewerpressus.mycartpanda.com shiftypumpkin.com splintered.co.uk storage3d.com/storage/2009.11 trinca.tornidor.com turnedninja.com runners-daily-blog.com buy.stripe.com/7sY4gsbMKdZwfx39Sq0oM00 buy.stripe.com/9B600jaQo3QC4rU3beg7e02 paypal.me/shiftypumpkin |
Gurucul Threat Detection and Incident Response (TDIR) Queries for Detection
Detection Query 1 : | domainname like "shiftypumpkin.com" or url like "shiftypumpkin.com" or siteurl like "shiftypumpkin.com" or domainname like "turnedninja.com" or url like "turnedninja.com" or siteurl like "turnedninja.com" or domainname like "cblanke2.pages.dev" or url like "cblanke2.pages.dev" or siteurl like "cblanke2.pages.dev" or domainname like "runners-daily-blog.com" or url like "runners-daily-blog.com" or siteurl like "runners-daily-blog.com" or domainname like "1winofficialsite.in" or url like "1winofficialsite.in" or siteurl like "1winofficialsite.in" or domainname like "dylansparks.com" or url like "dylansparks.com" or siteurl like "dylansparks.com" or domainname like "ericwbailey.website/published/accessibility-preference-settings-information-architecture-and-internalized-ableism" or url like "ericwbailey.website/published/accessibility-preference-settings-information-architecture-and-internalized-ableism" or domainname like "leroibear.com" or url like "leroibear.com" or siteurl like "leroibear.com" or domainname like "llm7-landing.pages.dev/_next/static/chunks/app/page-94a1a9b785a7305c.js" or url like "llm7-landing.pages.dev/_next/static/chunks/app/page-94a1a9b785a7305c.js" or siteurl like "llm7-landing.pages.dev/_next/static/chunks/app/page-94a1a9b785a7305c.js" or domainname like "myshantispa.com" or url like "myshantispa.com" or siteurl like "myshantispa.com" or domainname like "perceptivepumpkin.com" or url like "perceptivepumpkin.com" or siteurl like "perceptivepumpkin.com" or domainname like "reviewerpress.com/advertorial-maxvision-can/?lang=en" or url like "reviewerpress.com/advertorial-maxvision-can/?lang=en" or siteurl like "reviewerpress.com/advertorial-maxvision-can/?lang=en" or domainname like "reviewerpressus.mycartpanda.com" or url like "reviewerpressus.mycartpanda.com" or siteurl like "reviewerpressus.mycartpanda.com" or domainname like "splintered.co.uk" or url like "splintered.co.uk" or siteurl like "splintered.co.uk" or domainname like "storage3d.com/storage/2009.11" or url like "storage3d.com/storage/2009.11" or siteurl like "storage3d.com/storage/2009.11" or domainname like "trinca.tornidor.com" or url like "trinca.tornidor.com" or siteurl like "trinca.tornidor.com" or domainname like "buy.stripe.com/7sY4gsbMKdZwfx39Sq0oM00" or url like "buy.stripe.com/7sY4gsbMKdZwfx39Sq0oM00" or siteurl like "buy.stripe.com/7sY4gsbMKdZwfx39Sq0oM00" or domainname like "buy.stripe.com/9B600jaQo3QC4rU3beg7e02" or url like "buy.stripe.com/9B600jaQo3QC4rU3beg7e02" or siteurl like "buy.stripe.com/9B600jaQo3QC4rU3beg7e02" or domainname like "paypal.me/shiftypumpkin" or url like "paypal.me/shiftypumpkin" or siteurl like "paypal.me/shiftypumpkin" |
Reference:
https://unit42.paloaltonetworks.com/ai-agent-prompt-injection/