As AI agents increasingly rely on third-party API routers, criminals are using this dependence to trick users and inject malicious code into their machines.