Security & Risk

Sunday, May 3, 2026 Live updated Sunday next in 4h 53m 26s

Issue 20 Week of April 20–26, 2026

2 events tracked

Prompt injection in product descriptions, agent-purchase fraud, OWASP Top 10 work for agentic systems. Wiz Research demonstrated three live attacks on retail agents in week 17.

Apr 24, 2026

research Google Security Blog: 15,300 prompt injection instances found across 11,700 web pages

Empirical study finds 32% rise in malicious injections from Nov 2025 to Feb 2026; payment-fraud payloads targeting agents with PayPal and Stripe capabilities are among the most common.

Google Security Blog

Nov 20, 2025

research Visa PERC Fall 2025 report: 450% rise in dark-web AI agent fraud mentions

Biannual threats report documents 450%+ increase in dark-web posts mentioning AI agents for fraud and 25% rise in malicious bot transactions targeting merchants.

Visa Newsroom