web analytics

Data Exfiltration Using Indirect Prompt Injection – Source: www.schneier.com

Rate this post

Source: www.schneier.com – Author: Bruce Schneier

Interesting attack on a LLM:

In Writer, users can enter a ChatGPT-like session to edit or create their documents. In this chat session, the LLM can retrieve information from sources on the web to assist users in creation of their documents. We show that attackers can prepare websites that, when a user adds them as a source, manipulate the LLM into sending private information to the attacker or perform other malicious activities.

The data theft can include documents the user has uploaded, their chat history or potentially specific private information the chat model can convince the user to divulge at the attacker’s behest.

Tags: , ,

Posted on December 22, 2023 at 7:05 AM

Sidebar photo of Bruce Schneier by Joe MacInnis.

Original Post URL: https://www.schneier.com/blog/archives/2023/12/data-exfiltration-using-indirect-prompt-injection.html

Category & Tags: Uncategorized,ChatGPT,LLM,vulnerabilities – Uncategorized,ChatGPT,LLM,vulnerabilities

Views: 0


advisor pick´S post

More Latest Published Posts