Vulnerability Exposed in Custom GPTs: Risks of Data Leakage
Image: MLYearning
Northwestern University recently unveiled a critical vulnerability in custom Generative Pre-trained Transformers (GPTs).
Despite their versatility and adaptability, these advanced AI chatbots are prone to prompt injection attacks, risking exposure of sensitive information.
Custom GPTs, developed using OpenAI's ChatGPT and its GPT-4 Turbo Large Language Model, incorporate unique elements like specific prompts, datasets, and processing instructions for specialised tasks.
Image: Decrypt
However, these customisations and any confidential data used in their creation can be easily accessed by unauthorised parties.
An experiment by Decrypt demonstrated the ease of extracting a custom GPT's full prompt and confidential data through basic prompt hacking.
Testing over 200 custom GPTs, researchers found a high likelihood of such breaches, including the potential extraction of initial prompts and access to private files.
The study highlights two major risks: compromised intellectual property and breached user privacy.
Attackers can exploit the GPTs to either extract the core configuration and prompt ("system prompt extraction") or leak confidential training datasets ("file leakage").
Existing defences like defensive prompts prove ineffective against more sophisticated adversarial prompts.
More Vulnerability?
The researchers argue for a more comprehensive approach to safeguard these AI models, emphasising that determined attackers can likely exploit current vulnerabilities.
The study calls on the AI community to develop stronger security measures, suggesting that simple defensive prompts are inadequate against such advanced exploitation techniques.
With the rising customisation of GPTs offering vast potential, this research serves as a critical reminder of the security risks involved.
Users are advised to exercise caution, especially with sensitive data, underscoring the need for enhanced AI security without compromising user privacy and safety.
The complete Northwestern University study is available for reading here.
More news about gpts 프롬프트 추출
- May 09, 2024 2:27 pmA whale withdrew 18.76 billion FLOKI from CEXAccording to Scopescan, a whale withdrew 18.76 billion FLOKI (US$3.28 million) from Kucoin, OKX and Gate.io.
- Apr 30, 2024 4:24 pmA whale withdrew $3.02 million worth of PEPE and SHIB from OKXAccording to The Data Nerd, 30 minutes ago, whale 0x10Dc withdrew 241.6 billion PEPE (about $1.75 million) and 53 billion SHIB (about $1.27 million) from OKX. 18 hours ago, whale 0x1c6 withdrew 329.3 billion PEPE (about $2.32 million) from Binance and MEXC.
- Apr 30, 2024 2:34 pmA whale withdraws 2,000 ETH and transfers it to Lido and EigenLayerAccording to Scopescan monitoring, a whale withdrew 2,000 ETH (about 7 million US dollars), pledged 1,000 ETH (about 3.15 million US dollars) to Lido, and transferred another 1,000 to EigenLayer.
- Apr 25, 2024 1:19 pm엔에프프롬프트, B²네트워크와 파트너십 체결AI 기반 UGC 플랫폼 엔에프프롬프트(NFP)가 공식 X(구 트위터)를 통해 모듈형 비트코인 레이어2 솔루션 B²(비스퀘어드)네트워크와 파트너십을 체결했다고 25일 발표했다. 이번 파트너십을 통해 양사는 리워드(보상) 캠페인을 공동 진행할 예정이다.
- Apr 08, 2024 8:34 pmOpenAI Replaces Plugin Functionality With GPTsAccording to PANews, OpenAI has announced on its official website that it has fully replaced the plugin functionality with Generative Pretrained Transformers (GPTs). The GPT store now possesses the same comprehensive functionality as the plugins. It also includes a search feature, allowing users to look up the names or other details of the plugins they are using. Users will be able to continue their existing plugin conversations until April 9, 2024. As of the following day, the testing phase for the ChatGPT plugin will come to an end. It's worth noting that since March 19, 2024, users have been unable to create new conversations with plugins.
- Apr 05, 2024 12:08 pm엔에프프롬프트(NFP), 새로운 토큰 에어드랍 출시5일 엔에프프롬프트(NFP) 공식 발표에 따르면 적격 주소에 대한 새로운 NFP 에어드랍을 시작하며, FAQ에서 언급한 제외 범위에 포함되지 않는 옛 NFP 토큰을 보유하고 있는 주소는 참여할 자격이 있다. FAQ에 따르면 해킹 사건부터 스냅샷까지 체인의 잔액이 변하지 않은 사용자는 먼저 에어드랍을 받게 되며, 체인의 활동이 있는 다른 주소들은 추후 추적된다. 에어드랍 과정은 가스 비용을 지불할 필요가 없다. ... source: https://coincode.kr/15911
- Jan 16, 2024 5:07 amMicrosoft launches Copilot Pro with custom GPTs and Office integrationCopilot Pro brings business-level functionality to everyone, but it’ll cost $20 per month. source: https://cointelegraph.com/news/microsoft-launches-copilot-pro-artificial-intelligencecustom-gpts-office-integration
- Jan 12, 2024 4:30 amOpenAI launches ChatGPT Team service featuring 32K context window and custom GPTsThe new offering aims to hit the sweet spot between the company’s Enterprise and single-user offerings. source: https://cointelegraph.com/news/open-ai-artificial-intelligence-launches-chat-gpt-team-service-featuring-32-k-context-window-custom-gpts
- Dec 15, 2023 10:28 amA whale withdrew approximately 1.32 million LDOs from FalconXAccording to Spot On Chain monitoring, the new whale address (starting with 0x48c) withdraws approximately 1.32 million LDOs (approximately US$3.04 million) from FalconX.
- Jun 01, 2023 7:51 pmOpenAI roadmap: GPT-4 API cost will be reduced, open source GPT-3 is being consideredAccording to the AI development platform HumanLoop blog post, OpenAI CEO Sam Altman said in a closed-door seminar that OpenAI is currently severely limited by the GPU, causing them to postpone many short-term plans. Most of the problems with ChatGPT reliability and speed are Caused by shortage of GPU resources. Sam Altman also shared OpenAI's recent roadmap: GPT-4 API costs will be reduced in 2023; a longer ChatGPT context window (up to 1 million tokens), and there will be an API version that remembers conversation history in the future; GPT -4's multimodal capabilities won't be publicly available until 2024, and the visual version of GPT-4 cannot be extended to everyone until more GPU resources are available. Also, OpenAI is considering open-sourcing GPT-3, part of the reason they haven't open-sourced it is because they feel that there are not many people and companies capable of properly managing such a large language model. Many recent articles claim that "the era of giant AI models is over" is not correct. OpenAI's internal data show that the law of proportionality between scale and performance still holds true, and OpenAI's model size may double or triple every year (multiple information shows GPT-4 parameter scale 1 trillion), rather than increasing by many orders of magnitude.
More news about gpts 프롬프트 추출
