Prompt Injection Attacks Are Still Bad, Now They're Also a Hosting Problem

Writer: Jordan Sprogis

Jordan Sprogis, Contributing Expert

Jordan Sprogis is a creative writer and tech researcher who has been working on online content for the better part of a decade. She holds a bachelor's degree in professional writing from Western Connecticut State University and has devoted much of her career to crafting content for various web verticals, including CyberSpyder and The Echo. Since joining HostingAdvice, Jordan has combined her storytelling ability with her fascination for advancements in technology to pen over 500 articles geared toward industry pros and newcomers alike.

Editor: Lillian Castro

Lillian Castro, Senior Editor

Lillian Castro brings more than 30 years of editing and journalism experience to our team. She has written and edited for major news organizations, including The Atlanta Journal-Constitution and the New York Times, and she previously served as an adjunct instructor at the University of Florida. Today, she edits HostingAdvice content for clarity, accuracy, and reader engagement.

Reviewer: Cristian Lopez

Cristian Lopez, News Manager

Cristian Lopez uses his Business Marketing background from the University of Illinois at Chicago to create comfortable environments for customers, clients, and colleagues to share their thoughts and ideas openly. From interviewing tech leaders to conducting UX market research projects, Cristian knows the importance of storytelling — a key variable for innovation and inspiration. His goal at HostingAdvice is to wow readers on the ever-evolving nature of the tech industry and bring his audience the most reliable and exciting content on all things hosting.

Follow the HostingAdvice team for a daily dose of tech news, trending IT discussions, and interviews with the web's most innovative technologists.
Follow Us:
2.7k
1k

When HackerOne released its state of cybersecurity report last year, it presented quite a few concerning figures — one of which is that prompt injection attacks have increased 540% year over year.

Today, attackers still experiment with (and succeed at) manipulating AI systems through prompts at the fastest rate possible thus far.

Prompt injection is one of the most common ways attackers get into AI systems. And thanks to how much hosts are investing in AI, that means it’s now also a hosting problem.

What’s Actually Happening

Prompt injections occur when someone (a hacker, cyberattacker, botnet, whatever you want to call them) tricks the model into ignoring the original rules assigned and doing something else (like accessing private information).

The report urged hosting providers to go beyond prompt filtering and actually test whether their AI systems can be exploited the way bad actors are already doing it. And since hosts still have plenty to worry about, HackerOne launched Agentic Prompt Injection Testing to test exactly that.

Screenshot of HackerOne findings dashboard displaying multiple prompt injection vulnerabilities, including cases where AI systems exposed internal prompts, extracted data, or enabled unintended command execution
This is what prompt injection looks like in reality: AI systems being tricked into exposing internal logic, ignoring safeguards, and executing random commands. Source: HackerOne

“Hosting providers aren’t responsible for a customer’s prompts or model logic — but they play a decisive role in limiting the blast radius when AI apps are manipulated,” warns Sandeep Singh, a senior director at HackerOne.

Admittedly, it’s less about the tool itself and more about why something like this had to be built in the first place. It’s very much in line with zero-trust thinking: Don’t assume anything works the way it’s supposed to. Always double-check.

Now You Have to Test It

AI-powered systems and tools are so directly connected to data that it can take just one prompt mishap to cause an outage or breach.

It may be happening more than you think. IBM found that about 1 in 8 organizations (13%) have already experienced an AI-related data breach. More telling is that nearly all of them admitted they didn’t have proper AI access controls in place.

When breaches did occur, 60% led to compromised data, 31% caused operational disruption, and 23% caused financial losses.

Here’s the fallout of what happened to the 13% of organizations that said they experienced AI-related breaches.

Singh predicts auditors will expect hosts to actively test how AI systems react to being attacked, and not just rely on assuming everything will work as intended. As for how to do that, Singh has a few suggestions.

“Providers will either offer native capabilities or partner integrations that help customers test AI systems under adversarial conditions and produce clear evidence of what can actually be exploited before it becomes an incident,” he says.

It’s probably worth heeding that advice. Hosting providers are being pulled deeper into the AI security stack whether they like it or not. At this point, testing what a real attack looks like is really the only way to prepare.

About the Author

Contributing Expert

Jordan Sprogis is a creative writer and tech researcher who has been working on online content for the better part of a decade. She holds a bachelor's degree in professional writing from Western Connecticut State University and has devoted much of her career to crafting content for various web verticals, including CyberSpyder and The Echo. Since joining HostingAdvice, Jordan has combined her storytelling ability with her fascination for advancements in technology to pen over 500 articles geared toward industry pros and newcomers alike.

« BACK TO: BLOG

Meet the Experts

Our team of experts with a combined 50+ years of experience in web hosting serve insight and advice to more than 20 million users!

We Know Hosting

$

4

8

,

2

8

3

spent annually on web hosting!