ericfreyss, 1 month ago to OpenAI French

[2024/02/14]
Staying ahead of threat actors in the age of AI | Microsoft Security Blog

"[...] identified activity associated with known threat actors, including prompt-injections, attempted misuse of large language models (LLM), and fraud. Our analysis of the current use of LLM technology by threat actors revealed behaviors consistent with attackers using AI as another productivity tool on the offensive landscape."

https://www.microsoft.com/en-us/security/blog/2024/02/14/staying-ahead-of-threat-actors-in-the-age-of-ai/

#aisecurity #openai

ericfreyss, 1 month ago to ArtificialIntelligence French

Hugging Face works with Wiz to strengthen AI cloud security | Wiz Blog
https://www.wiz.io/blog/wiz-and-hugging-face-address-risks-to-ai-infrastructure

#huggingface #aisecurity

fj, 1 month ago to random

Is this advice even actionable?
Are there any HSM vendors (not enclaves) providing inference solutions with HSM-private weights?

https://media.defense.gov/2024/Apr/15/2003439257/-1/-1/0/CSI-DEPLOYING-AI-SYSTEMS-SECURELY.PDF#page11

#AISecurity

0x58, 4 months ago to infosec

Pretty interesting disclosure. By recovering local memory—an optimized GPU memory region—researchers were able to build a PoC where an attacker can listen into another user’s interactive LLM session (e.g., llama.cpp) across process or container boundaries.

#infosec #security #cybersecurity #aisecurity #llm #genai #gpu

https://blog.trailofbits.com/2024/01/16/leftoverlocals-listening-to-llm-responses-through-leaked-gpu-local-memory/

itnewsbot, 5 months ago to ChatGPT

AI poisoning could turn open models into destructive “sleeper agents,” says Anthropic - Enlarge (credit: Benj Edwards | Getty Images)

Imagine download... - https://arstechnica.com/?p=1995975 #largelanguagemodels #promptinjections #sleeperagents #llmsecurity #aisecurity #anthropic #chatgpt #chatgtp #claude2 #biz⁢ #claude #llm #ai

SteveThompson, 6 months ago to ai

"OpenAI’s Custom Chatbots Are Leaking Their Secrets"

https://www.wired.com/story/openai-custom-chatbots-gpts-prompt-injection-attacks/

"Released earlier this month, OpenAI’s GPTs let anyone create custom chatbots. But some of the data they’re built on is easily exposed."

#AI #AIethics #AIprivacy #OpenAI #ChatGPT #AIsecurity

postmodern, 8 months ago to ChatGPT

New ChatGPT detection technique just dropped! Search for "regenerate response". I'm not kidding. Lazy writers using ChatGPT are copy/pasting the full text off of the ChatGPT webpage, including the button text "regenerate response". So far 30 papers have been found with sentences/paragraphs randomly ending with "regenerate response".
https://retractionwatch.com/2023/10/06/signs-of-undeclared-chatgpt-use-in-papers-mounting/
#aisecurity #llmsecurity #chatgpt #retractionwatch

cyberner, 9 months ago to llm

Has anyone in their company implemented a security policy or code of conduct related to LLMs (such as ChatGPT) that they would be willing to share publicly?

#llm #aisecurity #privacy #aiethics #infosec

mbissey, 11 months ago to ai French

Good news: NIST launches generative #AI working group. The public working group will develop guidance around the special risks of AI technologies that generate content. Stay tuned☝️🛡️ #AISecurity

https://www.darkreading.com/dr-tech/nist-launches-generative-ai-working-group?utm_content=buffercee6f&utm_medium=social&utm_source=bufferapp.com&utm_campaign=buffer

webappia, 11 months ago to ChatGPT

The power, promise, and peril of cybersecurity in AI age. #SecureAI

Hashtags: #chatGPT #AIsecurity #Cyberthreats Summery: The release of OpenAI's ChatGPT language model has raised concerns about its potential misuse in cyberattacks. Researchers have demonstrated how the chatbot can be used to write convincing email messages that encourage recipients to share corporate secrets, create tweets promoting investment scams, and attack individuals through social media.…

https://webappia.com/the-power-promise-and-peril-of-cybersecurity-in-ai-age-secureai/