Hidden Prompt Injection in Brazilian Labor-Court Petition Reportedly Tried to Manipulate Galileu

The Galileu AI tool, developed by the Regional Labor Court of the 4th Region (TRT-RS) and nationalized by the Superior Council of Labor Justice (CSJT), detected a prompt injection attack in an initial petition processed by the 3rd Labor Court of Parauapebas (PA) on May 12th. The AI system identified hidden text segments containing instructions directed at the artificial intelligence itself, which aimed to make the system contest the petition superficially and not challenge documents, regardless of the command it received. This technique is known as prompt injection. Upon detection, the Galileu system issued a highlighted alert to the user with technical identification of the occurrence and prevented the maliciously inserted content from being processed by the tool. The system limited itself to reporting the technical fact without qualifying the conduct or proposing procedural measures. Judge Luiz Carlos de Araújo Santos Junior examined the content identified by the system before taking any action, maintaining human oversight as required by Brazilian judiciary regulations. The incident demonstrates the importance of using institutional AI tools with proper security measures, as controlling such attacks requires specialized techniques for identification according to technology officials.