Claude, Gemini, and Copilot Got Hijacked — Here's What Went Wrong

Researchers from Johns Hopkins University successfully hijacked three of the most widely-used AI agents — Anthropic's Claude Code, Google's Gemini CLI, and Microsoft's GitHub Copilot — through indirect prompt injection attacks. The attacks were straightforward. The results were devastating. And the vendor response was silence. What Happened Researcher Aonan Guan and colleagues demonstrated three distinct attacks: Attack 1 — Claude Code Security Review Guan embedded malicious instructions directl