To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!
Artwork

Content provided by Roger Basler de Roca. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Roger Basler de Roca or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Hello SundAI - our world through the lense of AI « »
AI agents are vulnerable to simple cyber and phishing attacks

9:07
 
Play
Playing
Share
 

M4AEpisode home
Manage episode 469203388 series 3153807
Content provided by Roger Basler de Roca. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Roger Basler de Roca or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.

In this episode, we delve into the vulnerabilities of commercial Large Language Model (LLM) agents, which are increasingly susceptible to simple yet dangerous attacks.

We explore how these agents, designed to integrate memory systems, retrieval processes, web access, and API calling, introduce new security challenges beyond those of standalone LLMs. Drawing from recent security incidents and research, we highlight the risks associated with LLM agents that can communicate with the outside world.

Our discussion is based on the study by Li, Zhou, Raghuram, Goldstein, and Goldblum (2024), 'Commercial LLM Agents Are Already Vulnerable to Simple Yet Dangerous Attacks,' which provides a taxonomy of attacks categorized by threat actors, objectives, entry points, and attacker observability. We examine illustrative attacks on popular open-source and commercial agents, revealing the practical implications of their vulnerabilities.

Key topics covered include:

  • Private data extraction: How agents can unintentionally leak sensitive user information, such as credit card numbers, to malicious websites.
  • Downloading viruses: Exploiting agents to download and execute files from untrustworthy sources.
  • Sending authenticated phishing emails: Manipulating agents to send deceptive emails to a user's contacts using the user's email credentials.
  • Redirecting scientific discovery agents: Causing agents to synthesize dangerous toxic compounds like nerve gas.

We also discuss potential defenses against these attacks, emphasizing the need for careful agent design and user awareness. Join us as we unpack the security and privacy weaknesses inherent in LLM agent pipelines and consider the steps needed to protect these systems from exploitation."

Reference: Li, A., Zhou, Y., Raghuram, V.C., Goldstein, T. and Goldblum, M., 2024. Commercial LLM Agents Are Already Vulnerable to Simple Yet Dangerous Attacks. [pdf] Available at: ArXiv.org - https://www.arxiv.org/abs/2502.08586

Disclaimer: This podcast is generated by Roger Basler de Roca (contact) by the use of AI. The voices are artificially generated and the discussion is based on public research data. I do not claim any ownership of the presented material as it is for education purpose only.

⁠https://rogerbasler.ch/en/contact/

  continue reading

50 episodes

Artwork

AI agents are vulnerable to simple cyber and phishing attacks

Hello SundAI - our world through the lense of AI

published

Play Playing
iconShare
 
M4AEpisode home
Manage episode 469203388 series 3153807
Content provided by Roger Basler de Roca. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Roger Basler de Roca or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.

In this episode, we delve into the vulnerabilities of commercial Large Language Model (LLM) agents, which are increasingly susceptible to simple yet dangerous attacks.

We explore how these agents, designed to integrate memory systems, retrieval processes, web access, and API calling, introduce new security challenges beyond those of standalone LLMs. Drawing from recent security incidents and research, we highlight the risks associated with LLM agents that can communicate with the outside world.

Our discussion is based on the study by Li, Zhou, Raghuram, Goldstein, and Goldblum (2024), 'Commercial LLM Agents Are Already Vulnerable to Simple Yet Dangerous Attacks,' which provides a taxonomy of attacks categorized by threat actors, objectives, entry points, and attacker observability. We examine illustrative attacks on popular open-source and commercial agents, revealing the practical implications of their vulnerabilities.

Key topics covered include:

  • Private data extraction: How agents can unintentionally leak sensitive user information, such as credit card numbers, to malicious websites.
  • Downloading viruses: Exploiting agents to download and execute files from untrustworthy sources.
  • Sending authenticated phishing emails: Manipulating agents to send deceptive emails to a user's contacts using the user's email credentials.
  • Redirecting scientific discovery agents: Causing agents to synthesize dangerous toxic compounds like nerve gas.

We also discuss potential defenses against these attacks, emphasizing the need for careful agent design and user awareness. Join us as we unpack the security and privacy weaknesses inherent in LLM agent pipelines and consider the steps needed to protect these systems from exploitation."

Reference: Li, A., Zhou, Y., Raghuram, V.C., Goldstein, T. and Goldblum, M., 2024. Commercial LLM Agents Are Already Vulnerable to Simple Yet Dangerous Attacks. [pdf] Available at: ArXiv.org - https://www.arxiv.org/abs/2502.08586

Disclaimer: This podcast is generated by Roger Basler de Roca (contact) by the use of AI. The voices are artificially generated and the discussion is based on public research data. I do not claim any ownership of the presented material as it is for education purpose only.

⁠https://rogerbasler.ch/en/contact/

  continue reading

50 episodes

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Listen to 500+ topics
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Quick Reference Guide

Top Podcasts
The Bill Simmons Podcast
PTI
First Take
Marketplace
Comedy of the Week
The Bugle
How Did This Get Made?
Doug Loves Movies
Planet Money
TED Talks Daily
NBC Nightly News with Lester Holt
The World This Hour
Daily Boost Motivation and Coaching
Radiolab
Science Friday
This American Life
Criminal
Sword and Scale
In The Dark
Player FM logo
Help/FAQ | Upgrade | Advertise
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2025 | Sitemap | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox
Listen to this show while you explore
Play