Data Exfiltration Using Indirect Prompt Injection

5 months ago AndyC

Data Exfiltration Using Indirect Prompt Injection
Interesting attack on a LLM:

In Writer, users can enter a ChatGPT-like session to edit or create their documents.

Data Exfiltration Using Indirect Prompt Injection

Interesting attack on a LLM:

In Writer, users can enter a ChatGPT-like session to edit or create their documents. In this chat session, the LLM can retrieve information from sources on the web to assist users in creation of their documents. We show that attackers can prepare websites that, when a user adds them as a source, manipulate the LLM into sending private information to the attacker or perform other malicious activities.

The data theft can include documents the user has uploaded, their chat history or potentially specific private information the chat model can convince the user to divulge at the attacker’s behest.

Tags: , ,

Sidebar photo of Bruce Schneier by Joe MacInnis.

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

Tags: , , , , , , , , , , , , ,

More Stories

Finland authorities warn of Android malware campaign targeting bank users

Finland authorities warn of Android malware campaign targeting bank users

5 hours ago AndyC
Law enforcement seized Lockbit group's website again

Law enforcement seized Lockbit group’s website again

11 hours ago AndyC
NATO and the EU formally condemned APT28 cyber espionage

NATO and the EU formally condemned APT28 cyber espionage

17 hours ago AndyC
Security Affairs newsletter Round 470 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 470 by Pierluigi Paganini – INTERNATIONAL EDITION

23 hours ago AndyC
GenAI Continues to Dominate CIO and CISO Conversations

GenAI Continues to Dominate CIO and CISO Conversations

23 hours ago AndyC
Blackbasta gang Synlab Italia attack

Blackbasta gang Synlab Italia attack

2 days ago AndyC

You may have missed

7 IT leadership hacks that deliver results

7 IT leadership hacks that deliver results

2 hours ago AndyC
6 cloud market forces impacting IT strategies today

6 cloud market forces impacting IT strategies today

2 hours ago AndyC
Egypt launched the first government data center

Egypt launched the first government data center

2 hours ago AndyC
Can AI tools help reduce Zoom fatigue?

Can AI tools help reduce Zoom fatigue?

2 hours ago AndyC
Report Finds CISOs Struggle to Maintain Operational Security

Report Finds CISOs Struggle to Maintain Operational Security

5 hours ago AndyC

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.