1 hour ago
1
Cybercriminals have found a disturbingly effective new attack vector, and it targets the very AI tools companies rushed to deploy. CrowdStrike’s 2026 Global Threat Report reveals that prompt injection attacks hit more than 90 organizations, with adversaries exploiting large language models to steal credentials and, in at least one case, cryptocurrency assets.
The report, published on February 24, 2026, paints a picture of an AI arms race where defenders are losing ground fast. AI-enabled attacks jumped 89% year-over-year, and the average time for an attacker to move laterally through a compromised network, what CrowdStrike calls “eCrime breakout time,” dropped to just 29 minutes in 2025. The fastest observed incident? 27 seconds.
How prompt injection became the top AI threat
The attack technique earned the top spot on the OWASP Top 10 for LLM Applications in 2025, ranking as the number one risk factor. CrowdStrike says it now tracks over 180 techniques related to prompt injection and AI exploitation. In response, the company launched Falcon AIDR in December 2025, a tool specifically designed to detect and mitigate prompt injection attacks and unsafe AI outputs.
The crypto connection: $175K drained via Morse code
For the crypto industry specifically, the threat isn’t theoretical. In a separate incident reported in May 2026, an AI-controlled cryptocurrency wallet lost approximately $175,000 after attackers used a Morse-code-encoded prompt to exploit vulnerabilities in the wallet’s automation tools.
Attackers encoded their malicious instructions in a format designed to bypass the safety filters that would catch plaintext attack prompts, then fed them to an AI system that had direct control over funds. The AI executed commands it should never have processed.
What this means for crypto investors and the broader market
The 29-minute average breakout time, with the fastest incident completing in 27 seconds, fundamentally changes the security calculus for anyone holding digital assets. Traditional incident response assumes human security teams have time to detect, analyze, and respond to breaches. When an attacker can move from initial access to asset theft in under 30 seconds, that assumption collapses.
For investors, the practical takeaway is straightforward: the security posture of the platforms holding your assets now needs to include AI-specific defenses. The new question is whether their AI systems have been hardened against prompt injection, and whether they have monitoring tools capable of catching attacks that unfold in seconds rather than hours.
Disclosure: This article was edited by Editorial Team. For more information on how we create and review content, see our Editorial Policy.
English (US) · 