HackerOne Launches Agentic Prompt Injection Testing as AI Vulnerabilities Surge 540%
HackerOne Launches Agentic Prompt Injection Testing as AI Vulnerabilities Surge 540%
Delivers validated, real-world exploit evidence so enterprises can deploy AI with confidence
SAN FRANCISCO, March 18, 2026 — HackerOne, a global leader in Continuous Threat Exposure Management (CTEM), today launched Agentic Prompt Injection Testing, a new capability that validates whether AI systems can be exploited under real-world adversarial conditions. HackerOne is the only platform to combine agentic exploit testing with expert-led adversarial testing from its global community of security researchers.
The release comes amid a 540% year-over-year increase in validated prompt injection vulnerabilities reported on the HackerOne platform, highlighting the rapid emergence of prompt injection as a critical AI security risk.
As enterprises connect AI systems to sensitive data, retrieval pipelines, and autonomous tools, a single prompt injection attack can extend far beyond the model itself. Manipulated inputs can override intended behavior, expose restricted data, and trigger unintended actions across interconnected systems.
Most AI security controls are still designed to filter suspicious prompts at the model boundary. They do not answer the question security leaders must confront: Can this system be exploited in production? Without validated proof of resilience under adversarial conditions, organizations risk deploying AI systems that appear secure in testing but fail under real-world pressures, leading to data exposure, tool misuse, and material business risk.
Agentic Prompt Injection Testing identifies whether prompt injection attacks can lead to real data exposure or tool misuse in deployed systems. It executes structured, multi-turn adversarial attacks against live LLM applications to determine whether prompt injection vulnerabilities can be exploited end-to-end. The agent tests indirect injection through retrieval pipelines and tool workflows, confirms real-world impact, and produces reproducible, severity-backed findings that security teams can act on.
HackerOne developed the capability based on its experience securing AI models and enterprise deployments for organizations, including Anthropic, IBM, Snap, Adobe, and eBay.
“Prompt injection has quickly become a severe risk to deployed AI systems because it can transform a trusted application into an attack surface,” said Nidhi Aggarwal, Chief Product Officer at HackerOne. “Security teams can’t rely on static controls or runtime filters alone. They need validated proof of whether an AI system can be exploited once it’s connected to real data and tools. Agentic Prompt Injection Testing delivers that evidence, enabling organizations to identify confirmed exposure and reduce risk before it impacts the business.”
“AI is advancing at an unprecedented pace, and security must keep up,” said Omar Santos, Distinguished Engineer, AI Security at Cisco and Project Governing Board Co-Chair of the Coalition for Secure AI (CoSAI). "The future leading organizations will be defined not just by AI innovation, but by how well they secure it. Rigorous validation under adversarial conditions is becoming fundamental to building trustworthy AI systems and raising the bar for the industry.”
Agentic Prompt Injection Testing is available as part of HackerOne’s AI Red Teaming and LLM Application Pentesting engagements. It extends HackerOne’s capabilities in continuous exposure validation, bringing scalable, adversarial testing to AI systems in production.
About HackerOne
HackerOne is a global leader in Continuous Threat Exposure Management (CTEM). The HackerOne Platform unites agentic AI solutions with the ingenuity of the world’s largest community of security researchers to continuously discover, validate, prioritize, and remediate exposures across code, cloud, and AI systems. Through solutions like bug bounty, vulnerability disclosure, agentic pentesting, AI red teaming, and code security, HackerOne delivers measurable, continuous reduction of cyber risk for enterprises. Industry leaders, including Anthropic, Crypto.com, General Motors, Goldman Sachs, Lufthansa, Uber, UK Ministry of Defence, and the U.S. Department of Defense, trust HackerOne to safeguard their digital ecosystems. HackerOne was recognized in Gartner’s Emerging Tech Impact Radar: AI Cybersecurity Ecosystem report for its leadership in AI Security Testing and has been named a Most Loved Workplace for Young Professionals (2024).