Prompt Injection
The Hackathon Challenge
I recently participated in a white hat hacking challenge at the Agent Olympics Hackathon Munich 2026. The goal was to build a voice agent that interacts with other AI systems to surface pre-planted sensitive information through prompt injection attacks.
Here you can see our voice agent successfully extract the password from a vulnerable AI chat system during the hackathon, navigating through multiple layers of defenses in just 3.5 minutes:
In this demonstration, our attacking voice agent first convinced the AI chat system’s “customer support” to transfer it to “technical support,” which had access to the password. It then exploited prompt injection vulnerabilities to trick the technical support agent into revealing the password. In practice, this meant threatening the technical support until it gave up.
Your Challenge
There’s a secret password hidden in this website. Once you’ve found the password, enter it below to verify:
Password Checker
Try to find the secret password and enter it below. Can you guess it?
Hint: The AI chat assistant on this website has access to certain information. Maybe it knows more than it should? 🤔