Amazon Q Developer for VS Code Vulnerable to Invisible Prompt Injection
highnewsLLM-Specific
security
Source: Embrace The RedAugust 20, 2025
Summary
Amazon Q Developer for VS Code, a coding tool used by over 1 million people, has a vulnerability where attackers can use invisible Unicode characters (special characters that humans cannot see but the AI can read) to trick the AI into following hidden instructions, potentially stealing sensitive information or running malicious code on a user's computer.
Classification
Attack Type
Prompt Injection
Attack SophisticationModerate
Impact (CIA+S)
confidentialityintegrity
Affected Vendors
Amazon
Related Issues
Original source: https://embracethered.com/blog/posts/2025/amazon-q-developer-interprets-hidden-instructions/
First tracked: February 12, 2026 at 02:20 PM
Classified by LLM (prompt v3) · confidence: 85%