Google researchers reveal a new vulnerability class called 'Task Injection' that compromises autonomous AI agents by manipulating their natural language instructions. Attackers can hijack agent workflows through poisoned inputs like calendar events or emails, forcing unintended actions. This represents a fundamental security challenge as agentic AI systems become increasingly integrated into business operations.