topic Persistent Threat in Large Language Models in Tech Talk https://community.isc2.org/t5/Tech-Talk/Persistent-Threat-in-Large-Language-Models/m-p/73079#M4514 <P>Hi All</P><P>&nbsp;</P><P class="">Prompt injection has become a prominent area of focus in AI security.&nbsp;&nbsp;Despite extensive discussions on the subject, the actual business risks posed by prompt injection remain unclear.&nbsp;&nbsp;For instance, what are the potential disruptions if an LLM provides incorrect/dangerous information? Can a single bad response propagate through a system and cause significant damage?</P><P class="">&nbsp;</P><P class="">To illustrate this, let's consider a real-world application.&nbsp;&nbsp;An AI-powered recruiting system could use Retrieval-Augmented Generation (RAG) to fetch relevant CVs and then ask an LLM to summarize and score these CVs. To mitigate prompt injection, the system might employ a second LLM to validate the output from the first LLM. How can prompt injections embedded in a CV persist throughout this pipeline?</P><P class="">&nbsp;</P><P class=""><A href="https://www.linkedin.com/pulse/persistent-threat-large-language-models-chenta-lee-mxwge/?trackingId=wKyPxMdrpY%2BQ%2FQ650JsJzw%3D%3D" target="_blank" rel="noopener">https://www.linkedin.com/pulse/persistent-threat-large-language-models-chenta-lee-mxwge/?trackingId=wKyPxMdrpY%2BQ%2FQ650JsJzw%3D%3D</A></P><P class="">&nbsp;</P><P class="">Regards</P><P class="">&nbsp;</P><P class="">Caute_Cautim</P><P class="">&nbsp;</P> Wed, 14 Aug 2024 00:04:25 GMT Caute_cautim 2024-08-14T00:04:25Z Persistent Threat in Large Language Models https://community.isc2.org/t5/Tech-Talk/Persistent-Threat-in-Large-Language-Models/m-p/73079#M4514 <P>Hi All</P><P>&nbsp;</P><P class="">Prompt injection has become a prominent area of focus in AI security.&nbsp;&nbsp;Despite extensive discussions on the subject, the actual business risks posed by prompt injection remain unclear.&nbsp;&nbsp;For instance, what are the potential disruptions if an LLM provides incorrect/dangerous information? Can a single bad response propagate through a system and cause significant damage?</P><P class="">&nbsp;</P><P class="">To illustrate this, let's consider a real-world application.&nbsp;&nbsp;An AI-powered recruiting system could use Retrieval-Augmented Generation (RAG) to fetch relevant CVs and then ask an LLM to summarize and score these CVs. To mitigate prompt injection, the system might employ a second LLM to validate the output from the first LLM. How can prompt injections embedded in a CV persist throughout this pipeline?</P><P class="">&nbsp;</P><P class=""><A href="https://www.linkedin.com/pulse/persistent-threat-large-language-models-chenta-lee-mxwge/?trackingId=wKyPxMdrpY%2BQ%2FQ650JsJzw%3D%3D" target="_blank" rel="noopener">https://www.linkedin.com/pulse/persistent-threat-large-language-models-chenta-lee-mxwge/?trackingId=wKyPxMdrpY%2BQ%2FQ650JsJzw%3D%3D</A></P><P class="">&nbsp;</P><P class="">Regards</P><P class="">&nbsp;</P><P class="">Caute_Cautim</P><P class="">&nbsp;</P> Wed, 14 Aug 2024 00:04:25 GMT https://community.isc2.org/t5/Tech-Talk/Persistent-Threat-in-Large-Language-Models/m-p/73079#M4514 Caute_cautim 2024-08-14T00:04:25Z