AI agents open door to new hacking threats / Photo: © AFP/File
-
Outrage in Italy after Trump says Meloni 'begged' for photo op
-
Turkey bars public World Cup screening over university entrance exam
-
From birds to fish, how extreme heat causes wildlife to suffer
-
Ebola spreading 'fast' in DR Congo, warns WHO
-
Trapped on Everest for days, Nepali survivor recounts escape
-
The Sun may not engulf Earth after all, scientists say
-
Clark leads by three as US Open second round begins
-
Russia signals slower rate cuts amid high Ukraine war spending
-
Fritz gets revenge on Shelton to reach Halle semis
-
Henry strikes as New Zealand lead England by 100 runs in 2nd Test
-
Heatwave hits more than half of France's population
-
Online threats, insults fuel S.Africa's anti-foreigner hate
-
Former England keeper Earps agrees to join London City Lionesses
-
Clark completes first round with two-stroke US Open lead
-
Olympic hurdles medallist Bascou suspended for doping
-
Italian FM cancels US visit over reported Trump comments
-
Pegula sinks Keys to reach Berlin Open semis
-
Oil prices, shares steady after US-Iran talks postponed
-
Gaza ceasefire a 'deadly illusion': UNICEF
-
What did we learn from the hantavirus cruise ship scare?
-
S.Africa anti-migrant hate loses team African support at World Cup
-
Arsenal will start Premier League title defence against Coventry
-
European robotics start-ups go up against Chinese heavyweights
-
'Alter-Ego': An Italian hospital's little robot carer
-
Japan's men told to clean at home, not just the World Cup
-
French court confirms Moroccan football star Hakimi will stand trial for rape
-
South Korean leader says told Trump sanctions on North are 'ineffective'
-
Deadly Philippines quake turns seabed into shore
-
Stocks rally falters, oil rises as US-Iran talks postponed
-
S. Korean leader says he told Trump sanctions on North are 'ineffective'
-
Indonesia to capture last-known wild Bornean rhino for IVF
-
No vaccine, conflict, mistrust: Ebola's return to DR Congo
-
USA, Australia eye World Cup knockout rounds, Brazil in action
-
AI museum brings sights, sounds and smells of the rainforest
-
Iran to lodge complaint with FIFA over World Cup restrictions
-
'Old dog' Slipper out of retirement for Wallabies' Nations Championship campaign
-
New Zealand minister defends fishers after two orcas killed in net
-
Mexico into World Cup last 32, Canada celebrate historic win
-
Seoul record leads most Asian markets higher, crude extends losses
-
Co-hosts Mexico first team into World Cup knockout rounds
-
Burnham wins key UK poll, paving way for bid to challenge PM Starmer
-
Erasmus under 'no illusions' as tough Springboks season kicks off
-
'Pico' Lopes -- Cape Verde defender's journey from Ireland to World Cup
-
100 Colombian guerrillas disarm in deal with leftist government
-
'Pretty special': captains eye Super Rugby glory in clash of top seeds
-
Football 'ambassador' and fan favorite: a duck becomes a star in Mexico
-
Ivory Coast's Diomande living World Cup dream, dealing with tragedy
-
Slipper out of retirement for Wallabies' Nations Championship campaign
-
Australia seek 'respect' from US amid World Cup 'layup' row
-
New Zealand's Payne joins Paraguayan powerhouse after Instagram fame
AI agents open door to new hacking threats
Cybersecurity experts are warning that artificial intelligence agents, widely considered the next frontier in the generative AI revolution, could wind up getting hijacked and doing the dirty work for hackers.
AI agents are programs that use artificial intelligence chatbots to do the work humans do online, like buy a plane ticket or add events to a calendar.
But the ability to order around AI agents with plain language makes it possible for even the technically non-proficient to do mischief.
"We're entering an era where cybersecurity is no longer about protecting users from bad actors with a highly technical skillset," AI startup Perplexity said in a blog post.
"For the first time in decades, we're seeing new and novel attack vectors that can come from anywhere."
These so-called injection attacks are not new in the hacker world, but previously required cleverly written and concealed computer code to cause damage.
But as AI tools evolved from just generating text, images or video to being "agents" that can independently scour the internet, the potential for them to be commandeered by prompts slipped in by hackers has grown.
"People need to understand there are specific dangers using AI in the security sense," said software engineer Marti Jorda Roca at NeuralTrust, which specializes in large language model security.
Meta calls this query injection threat a "vulnerability." OpenAI chief information security officer Dane Stuckey has referred to it as "an unresolved security issue."
Both companies are pouring billions of dollars into AI, the use of which is ramping up rapidly along with its capabilities.
- AI 'off track' -
Query injection can in some cases take place in real time when a user prompt -- "book me a hotel reservation" -- is gerrymandered by a hostile actor into something else -- "wire $100 to this account."
But these nefarious prompts can also be hiding out on the internet as AI agents built into browsers encounter online data of dubious quality or origin, and potentially booby-trapped with hidden commands from hackers.
Eli Smadja of Israeli cybersecurity firm Check Point sees query injection as the "number one security problem" for large language models that power AI agents and assistants that are fast emerging from the ChatGPT revolution.
Major rivals in the AI industry have installed defenses and published recommendations to thwart such cyberattacks.
Microsoft has integrated a tool to detect malicious commands based on factors including where instructions for AI agents originate.
OpenAI alerts users when agents doing their bidding visit sensitive websites and blocks proceeding until the software is supervised in real time by the human user.
Some security professionals suggest requiring AI agents to get user approval before performing any important task - like exporting data or accessing bank accounts.
"One huge mistake that I see happening a lot is to give the same AI agent all the power to do everything," Smadja told AFP.
In the eyes of cybersecurity researcher Johann Rehberger, known in the industry as "wunderwuzzi," the biggest challenge is that attacks are rapidly improving.
"They only get better," Rehberger said of hacker tactics.
Part of the challenge, according to the researcher, is striking a balance between security and ease of use since people want the convenience of AI doing things for them without constant checks and monitoring.
Rehberger argues that AI agents are not mature enough to be trusted yet with important missions or data.
"I don't think we are in a position where you can have an agentic AI go off for a long time and safely do a certain task," the researcher said.
"It just goes off track."
M.Ouellet--BTB
