Back to MITRE ATLAS View canonical source
MITRE ATLAS · AML.TA0005
Execution
“The adversary is trying to run malicious code or trigger malicious behavior in the ML system.”
ATLAS tactic AML.TA0005
deployment
Type
tactic
Parent
—
Sub-items
2
Sub-items
- AML.T0051LLM prompt injectionAdversaries craft instructions in inputs or retrieved content to alter an LLM's behavior or exfiltrate data.
- AML.T0051.001Indirect prompt injectionAdversaries plant prompt instructions in third-party content (web pages, documents, emails) consumed by an LLM via retrieval or tool use.
Cross-framework relationships
Lattice uses an explicit, four-type vocabulary and refuses ‘equivalent.’ Each relationship below carries a rationale and an editorial reviewer credit.
No cross-framework relationships have been recorded for this item. Either editorial review is pending, or no other framework speaks here.
Version: Pinned 2026.Q1Last reviewed: 2026-05-02