Ep 11 | Sean Park - When Passports Execute: Exploiting AI Driven KYC Pipelines | [un]prompted 2026 episode artwork

EPISODE · May 28, 2026 · 22 MIN

Ep 11 | Sean Park - When Passports Execute: Exploiting AI Driven KYC Pipelines | [un]prompted 2026

from [un]prompted Security Practitioner Con 2026 · host [un]prompted

Day 1 | Stage 1Shows how modern KYC workflows that delegate passport parsing, database writes, and customer verification to AI-driven extraction agents are vulnerable. Document-embedded injects and compliance controls together steer AI agents into cross-record reads and writes, enabling data theft and exfiltration without bypassing access controls. Presents a scalable exploitation approach across KYC extraction agents using LLM-generated high-success payloads.Sean Park is Principal Threat Researcher, TrendAI.Watch on YouTube: https://www.youtube.com/watch?v=XVos-fhnsek

Day 1 | Stage 1Shows how modern KYC workflows that delegate passport parsing, database writes, and customer verification to AI-driven extraction agents are vulnerable. Document-embedded injects and compliance controls together steer AI agents into cross-record reads and writes, enabling data theft and exfiltration without bypassing access controls. Presents a scalable exploitation approach across KYC extraction agents using LLM-generated high-success payloads.Sean Park is Principal Threat Researcher, TrendAI.Watch on YouTube: https://www.youtube.com/watch?v=XVos-fhnsek

NOW PLAYING

Ep 11 | Sean Park - When Passports Execute: Exploiting AI Driven KYC Pipelines | [un]prompted 2026

0:00 22:21

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

No similar episodes found.

No similar podcasts found.

Frequently Asked Questions

How long is this episode of [un]prompted Security Practitioner Con 2026?

This episode is 22 minutes long.

When was this [un]prompted Security Practitioner Con 2026 episode published?

This episode was published on May 28, 2026.

What is this episode about?

Day 1 | Stage 1Shows how modern KYC workflows that delegate passport parsing, database writes, and customer verification to AI-driven extraction agents are vulnerable. Document-embedded injects and compliance controls together steer AI agents into...

Can I download this [un]prompted Security Practitioner Con 2026 episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.
URL copied to clipboard!