The use of agentic orchestration in security-critical workflows without multi-layered defense architecture can lead to significant vulnerabilities. it becomes evident why KYC is becoming a priority target for prompt-injection attacks. These systems inherently handle external, untrusted data while having access to highly sensitive information, such as users’ personal and financial data, passports, and other ID documents. And once the KYC workflow is agent-driven, it can be easily manipulated.