Agent Commander: Promptware-Powered Command and Control
infonewsLLM-Specific
securityresearch
Source: Embrace The RedMarch 16, 2026
Summary
Promptware-powered command and control (C2, a system attackers use to remotely control compromised devices) refers to using prompt injection (tricking an AI by hiding instructions in its input) attacks against AI tools like ChatGPT to create a malicious control channel. Researchers have demonstrated that by combining features like browsing and memory capabilities in AI systems, attackers can build complex, malware-like prompt injection payloads that function similarly to traditional malware for remote control purposes.
Classification
Attack Type
Prompt Injection
Attack SophisticationModerate
Impact (CIA+S)
integrityavailability
Affected Vendors
OpenAI
Related Issues
Original source: https://embracethered.com/blog/posts/2026/agent-commander-your-agent-works-for-me-now/
First tracked: March 17, 2026 at 02:00 AM
Classified by LLM (prompt v3) · confidence: 75%