AI Kill Chain in Action: Devin AI Exposes Ports to the Internet with Prompt Injection
Today let’s explore Devin’s system prompt a bit more. Specifically, an interesing tool that I discovered when reading through it.
Hidden in Devin’s capabilities is a tool that can open any local port to the public Internet. That means, with the right indirect prompt injection nudge, Devin can be tricked into publishing sensitive files or services for anyone to access.