[{"data":1,"prerenderedAt":26},["ShallowReactive",2],{"nr-en-usa-china-ki-sicherheit-prompt-injection":3},{"slug":4,"title":5,"dek":6,"date":7,"time":8,"publishedAt":9,"updated":10,"updatedAt":10,"dateFmt":11,"updatedFmt":10,"kind":12,"tier":13,"author":14,"authorName":15,"topics":16,"tracker":10,"trackerLabel":10,"headlineStat":10,"image":22,"ogImage":22,"imageAlt":5,"csv":10,"minutes":23,"words":24,"html":25},"usa-china-ki-sicherheit-prompt-injection","USA and China Battle Over AI Security: The New Arms Race of Prompt-Injection Attacks","The Washington Post reveals how both superpowers systematically attempt to make AI models leak their secrets. A new AI security arms race is underway.","2026-07-06","12:11","2026-07-06T12:11:00+02:00","","July 6, 2026","news","standard","ideal-syka","Ideal Syka",[17,18,19,20,21],"AI Security","Prompt-Injection","USA-China Arms Race","LLM Robustness","Cybersecurity","\u002Fog-nr\u002Fusa-china-ki-sicherheit-prompt-injection.en.png",2,436,"\u003Cp>The USA and China are waging a covert battle over chatbot control – not through classical hacking, but through \u003Cstrong>prompt-injection attacks\u003C\u002Fstrong>. According to reporting by the Washington Post and Anthropic, both countries are systematically trying to force large language models to reveal their internal instructions and training data. It is an arms race for AI security that is just gaining momentum.\u003C\u002Fp>\n\u003Ch2>The essentials\u003C\u002Fh2>\n\u003Cul>\n\u003Cli>\u003Cstrong>Prompt-injection\u003C\u002Fstrong> is a new attack vector: Users attempt to break AI models out of their security guidelines through cleverly formulated inputs\u003C\u002Fli>\n\u003Cli>\u003Cstrong>USA and China\u003C\u002Fstrong> are both running systematic campaigns to test adversarial and domestic AI systems for vulnerabilities\u003C\u002Fli>\n\u003Cli>The attacks aim to expose \u003Cstrong>system prompts, training data, and proprietary information\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>This is a \u003Cstrong>new arms race\u003C\u002Fstrong>: While classical cybersecurity operates at the network level, this battle takes place at the AI-prompt level\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch2>How the attacks work\u003C\u002Fh2>\n\u003Cp>Prompt-injection is conceptually simple but insidious: An attacker formulates an input so that the AI model ignores its own security guidelines. Instead of helping the user, the model should then reveal internal instructions – such as how it was trained or what data it contains. The Washington Post demonstrates that such attacks are not merely theoretical but are already being conducted at scale by state actors.\u003C\u002Fp>\n\u003Cp>The treacherous part: No malware is needed, no server access required. A simple text is sufficient. This makes this attack vector extremely attractive for intelligence agencies and militaries – and extremely dangerous for AI providers.\u003C\u002Fp>\n\u003Ch2>The strategic backdrop\u003C\u002Fh2>\n\u003Cp>Whoever knows the vulnerabilities in adversarial AI systems gains an advantage. Simultaneously, nations must harden their own models. This leads to a classic arms spiral: \u003Cstrong>USA and China test each other&#39;s systems, improve their defenses, the other adapts – and so on\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>The implications are substantial: AI models become strategic assets like nuclear power plants or aircraft carriers. Whoever controls or compromises them gains an informational edge. This explains why both superpowers are investing massively here.\u003C\u002Fp>\n\u003Ch2>What this means for German companies\u003C\u002Fh2>\n\u003Cp>German firms developing or deploying AI systems should understand: Prompt-injection is not science fiction but a present threat. Companies working with sensitive data – financial sector, industry, healthcare – must test their models for robustness. The question is not if, but when such attacks will be deliberately deployed against German systems. A defensive mindset is now required: What information could my model accidentally disclose? How do I test for this? Who bears responsibility? These questions belong in every AI governance plan.\u003C\u002Fp>\n\u003Ch2>Sources\u003C\u002Fh2>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.washingtonpost.com\u002Fnational-security\u002F2026\u002F07\u002F06\u002Fwhy-anthropic-alleges-chinese-firms-are-distilling-knowledge-claude\u002F\">The Washington Post\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Editorially owned by \u003Ca href=\"\u002Fen\u002Fautor\u002Fideal-syka\">Ideal Syka\u003C\u002Fa>. Sources and method: \u003Ca href=\"\u002Fen\u002Fredaktion\">Newsroom &amp; method\u003C\u002Fa>. Tips and corrections: \u003Ca href=\"mailto:ai@i6eal.de\">ai@i6eal.de\u003C\u002Fa>.\u003C\u002Fem>\u003C\u002Fp>\n",1783341188146]