TLDR: Prompt injection is a new application vulnerability in generative AI, distinct from SQL injection. Unlike SQL, LLMs lack separation between instructions and data, making prompt injection harder to mitigate. Awareness, secure design, risk reduction, and monitoring are crucial in developing secure AI systems.
https://www.ncsc.gov.uk/blog-post/prompt-injection-is-not-sql-injection