AI agents open door to new hacking threats / Photo: Lionel BONAVENTURE - AFP/File
-
More than 50,000 missing after Venezuela quakes, death toll soars
-
Japan say bring on Brazil at World Cup but wary of revenge mission
-
Caudullo challenges Montpellier to be 'watertight' against Dupont threat
-
Stocks recover from tech tremors as oil prices fall
-
Venezuela earthquakes toll soars to 589 amid desperate rescue effort
-
How heatwaves are dangerous to human health
-
Europe heatwave shattering temperature records: UN
-
UK hottest June day record broken for third day in a row: Met Office
-
Farm workers wilt in sweltering Italian shanty town
-
Tech jitters send stocks lower, oil prices fall
-
Keys to face Maria in Eastbourne final
-
Venezuela earthquakes toll doubles amid desperate rescue efforts
-
Caudullo challenges Montpellier to be 'watertight' against Dupont
-
Mercedes dominate opening practice at Austrian GP
-
Osaka sinks Wang to reach first grass court final
-
Wawrinka announces farewell fete with Federer and Murray
-
UN demands probes into US ICE custody deaths
-
Lukashenko will always be threat to Ukraine: Belarus opposition leader
-
Stokes strikes as New Zealand make England feel the heat
-
European heatwave's unlikely accomplice: an ocean 'cold blob'
-
Lyles enjoying freedom to focus on speed and stuff off the track
-
Japan's progress paying off at World Cup, says Troussier
-
How the British royal family is funded, and where the money goes
-
Dozens of international teams rushing to Venezuela: UN
-
Russia-annexed Crimea declares 'emergency' amid Ukraine strikes
-
Floods kill two in Taiwan as twin storms approach Japan
-
Stocks slide on renewed tech slump, oil prices fall
-
In the heat, Ivorians don't think twice about using aircon
-
EU hits France's Sanofi with flu vaccine antitrust probe
-
Belgium cancels Waterloo battle reenactment due to heat
-
Europe heatwave swamps hospitals, halts parties
-
Mayweather-Pacquiao rematch postponed indefinitely
-
MEXC Reports 142% Volume Surge for MU Futures Following Record Micron Earnings Beat
-
Four injured, flights cancelled in Japan as twin storms approach
-
Serena Williams to face Joint in Wimbledon return after four-year absence
-
Russia pulls team from gymnastics World Cup event over flag row
-
UN says Iran nuclear pledge needs 'very strong' verification
-
New Zealand internal report warns of Chinese military forays in Pacific
-
Mexico's Sheinbaum and Spanish king use World Cup to mend diplomatic rift
-
Mbappe v Haaland as France face Norway in World Cup group decider
-
'Die together': Ukraine's LGBTQ soldiers fighting Russia -- and for their rights
-
European economies suffer from heatwave
-
Wole Soyinka university theatre: a talent factory for Nigeria and beyond
-
Hospitals overwhelmed as Europe heatwave shifts east
-
Climate change to blame for intensity of Europe heatwave: scientists
-
努莎·奧貝爾與迪特馬爾·沃伊德克 波茨坦如何辜負一名重度殘障幼兒
-
Venezuelan mother digs with bare hands for missing son
-
'Very strong' nuclear verification needed in Iran after war: IAEA head
-
Нуша Аубель и Дитмар Войдке: как Потсдам бросает на произвол судьбы малыша с тяжелой формой инвалидности
-
US lose 3-2 to Turkey after last-gasp strike
AI agents open door to new hacking threats
Cybersecurity experts are warning that artificial intelligence agents, widely considered the next frontier in the generative AI revolution, could wind up getting hijacked and doing the dirty work for hackers.
AI agents are programs that use artificial intelligence chatbots to do the work humans do online, like buy a plane ticket or add events to a calendar.
But the ability to order around AI agents with plain language makes it possible for even the technically non-proficient to do mischief.
"We're entering an era where cybersecurity is no longer about protecting users from bad actors with a highly technical skillset," AI startup Perplexity said in a blog post.
"For the first time in decades, we're seeing new and novel attack vectors that can come from anywhere."
These so-called injection attacks are not new in the hacker world, but previously required cleverly written and concealed computer code to cause damage.
But as AI tools evolved from just generating text, images or video to being "agents" that can independently scour the internet, the potential for them to be commandeered by prompts slipped in by hackers has grown.
"People need to understand there are specific dangers using AI in the security sense," said software engineer Marti Jorda Roca at NeuralTrust, which specializes in large language model security.
Meta calls this query injection threat a "vulnerability." OpenAI chief information security officer Dane Stuckey has referred to it as "an unresolved security issue."
Both companies are pouring billions of dollars into AI, the use of which is ramping up rapidly along with its capabilities.
- AI 'off track' -
Query injection can in some cases take place in real time when a user prompt -- "book me a hotel reservation" -- is gerrymandered by a hostile actor into something else -- "wire $100 to this account."
But these nefarious prompts can also be hiding out on the internet as AI agents built into browsers encounter online data of dubious quality or origin, and potentially booby-trapped with hidden commands from hackers.
Eli Smadja of Israeli cybersecurity firm Check Point sees query injection as the "number one security problem" for large language models that power AI agents and assistants that are fast emerging from the ChatGPT revolution.
Major rivals in the AI industry have installed defenses and published recommendations to thwart such cyberattacks.
Microsoft has integrated a tool to detect malicious commands based on factors including where instructions for AI agents originate.
OpenAI alerts users when agents doing their bidding visit sensitive websites and blocks proceeding until the software is supervised in real time by the human user.
Some security professionals suggest requiring AI agents to get user approval before performing any important task - like exporting data or accessing bank accounts.
"One huge mistake that I see happening a lot is to give the same AI agent all the power to do everything," Smadja told AFP.
In the eyes of cybersecurity researcher Johann Rehberger, known in the industry as "wunderwuzzi," the biggest challenge is that attacks are rapidly improving.
"They only get better," Rehberger said of hacker tactics.
Part of the challenge, according to the researcher, is striking a balance between security and ease of use since people want the convenience of AI doing things for them without constant checks and monitoring.
Rehberger argues that AI agents are not mature enough to be trusted yet with important missions or data.
"I don't think we are in a position where you can have an agentic AI go off for a long time and safely do a certain task," the researcher said.
"It just goes off track."
P.Serra--PC
