LinkedIn profiles are now read by language models far more often than by recruiters. Sourcing tools, lead enrichment, deal intelligence, candidate ranking, sales prospecting agents — they all scrape profiles, feed the text into an LLM, and act on whatever comes back (really whatever comes). That makes LinkedIn one of the largest user-controlled inputs flowing into production AI systems today, and almost nobody treats it as such. If you're building anything in that pipeline, than... prompt injection on LinkedIn is one of your problems. Most teams I talked to haven't scoped it yet. How the injection actually works Prompt injection comes in two flavors. Direct injection is when a user types a malicious prompt straight into a model. Indirect injection is when malicious instructions are buried inside the data the model later reads: a webpage, an email body, a document, or in this case, a LinkedIn profile.…