ATR-2026-00116highAgent Manipulationexperimental

Malicious Agent-to-Agent Message Injection

Detects malformed or malicious messages in agent-to-agent (A2A) communication channels. Attackers can embed prompt injection payloads, hidden tool calls, or credential forwarding requests inside inter-agent messages. When a receiving agent processes these messages without validation, the embedded instructions execute in the receiver's security context, potentially escalating privileges across the multi-agent system.

Severity

high

Response Actions

alertsnapshot

References

OWASP Agentic

ASI07:2026 - Insecure Inter-Agent Communication

View full YAML on GitHub →

More Agent Manipulation Rules

ATR-2026-00030criticalCross-Agent Attack Detection ATR-2026-00032highAgent Goal Hijacking Detection ATR-2026-00074criticalCross-Agent Privilege Escalation ATR-2026-00076highInsecure Inter-Agent Communication Detection ATR-2026-00077highHuman-Agent Trust Exploitation Detection