Image to Prompt Injection with Google Bard
infonewsLLM-Specific
securityresearch
Source: Embrace The RedJuly 14, 2023
Summary
Google Bard can be tricked through image-based prompt injection (hidden instructions placed in images that the AI then follows), as demonstrated by a researcher who embedded text in an image that caused Bard to perform unexpected actions. This vulnerability shows that AI systems that analyze images may be vulnerable to indirect prompt injection attacks (tricking an AI into ignoring its normal instructions by hiding malicious commands in user-provided content).
Classification
Attack Type
Prompt Injection
Attack SophisticationTrivial
Impact (CIA+S)
integrity
AI Component TargetedInference
Affected Vendors
Google
Related Issues
Original source: https://embracethered.com/blog/posts/2023/google-bard-image-to-prompt-injection/
First tracked: February 12, 2026 at 02:20 PM
Classified by LLM (prompt v3) · confidence: 92%