Huang, K. (2025, June 02). Agentic AI Threat Modeling Framework: MAESTRO. Cloud Security Alliance. https://cloudsecurityalliance.org/blog/2025/02/06/agentic-ai-threat-modeling-framework-maestro
Kosinski, M., & Forrest, A. (2023, February 23). What is a prompt injection attack? IBM. https://www.ibm.com/think/topics/prompt-injection
OWASP GenAI Security Project. (2025, April 23). Multi-Agentic system Threat Modeling Guide v1.0. https://genai.owasp.org/resource/multi-agentic-system-threat-modeling-guide-v1-0/
Rehberger, J. (2025a, July 28). The Month of AI Bugs 2025. https://embracethered.com/blog/posts/2025/announcement-the-month-of-ai-bugs/
Rehberger, J. (2025b, August 02). Turning ChatGPT Codex Into A ZombAI Agent. https://embracethered.com/blog/posts/2025/chatgpt-codex-remote-control-zombai/
Rehberger, J. (2025c, August 06). I Spent $500 To Test Devin AI For Prompt Injection So That You Don’t Have To. https://embracethered.com/blog/posts/2025/devin-i-spent-usd500-to-hack-devin/
Rehberger, J. (2025d, August 12). GitHub Copilot: Remote Code Execution via Prompt Injection (CVE-2025-53773). https://embracethered.com/blog/posts/2025/github-copilot-remote-code-execution-via-prompt-injection/
Rehberger, J. (2025e, August 13). Google Jules: Vulnerable to Multiple Data Exfiltration Issues. https://embracethered.com/blog/posts/2025/google-jules-vulnerable-to-data-exfiltration-issues/
Rehberger, J. (2025f, August 30). Wrap Up: The Month of AI Bugs. https://embracethered.com/blog/posts/2025/wrapping-up-month-of-ai-bugs/
