Skip to content
ATR-2026-00119highAgent Manipulationexperimental

Social Engineering Attack via Agent Output

Detects agents being used as social engineering vectors against the human user. Attackers can poison agent context to generate urgency-based manipulation, authority impersonation, or emotional pressure tactics. Because users tend to trust agent output more than raw emails, social engineering delivered through an AI agent has higher success rates than traditional phishing.

Severity
high
Category
Agent Manipulation
Scan Target
mcp
Author
ATR Community

Response Actions

alertsnapshot

References

OWASP Agentic
ASI09:2026 - Human Trust Exploitation
View full YAML on GitHub →

More Agent Manipulation Rules

ATR-2026-00030criticalCross-Agent Attack DetectionATR-2026-00032highAgent Goal Hijacking DetectionATR-2026-00074criticalCross-Agent Privilege EscalationATR-2026-00076highInsecure Inter-Agent Communication DetectionATR-2026-00077highHuman-Agent Trust Exploitation Detection