Why AI agents create new risk: direct/indirect prompt injection, the lethal trifecta, the OWASP LLM Top 10, and defense in depth.