With how dumb and easy to manipulate --many-- people are.. Imagine how much worse it will be when you have a full on-rails AI based "scam agent" that can just run from some rented GPU's in a DC that can re-locate anytime you think you are going to be found out....
Archive: https://archive.today/Dva2q
From the post:
>To be able to fulfill their purpose of performing tasks on a user’s behalf, AI agents need access to large amounts of sensitive information, including things like bank details and passwords. However, this creates a large new “attack surface,” that cybercriminals or spy agencies could use to steal sensitive personal or company information.
AI agents are especially vulnerable to prompt injection attacks, where malicious websites hide instructions that trick the AI into executing harmful actions. Because products like AI web browsers can read and act on web content, attackers could potentially steal emails, access accounts, exfiltrate data, overwrite clipboards, or redirect users to phishing sites.
“The way an agent works is that it completes complex tasks on your behalf, and it does that by accessing many sources of data,” she said in an interview on the sidelines of the Slush technology conference in Helsinki, Finland, last week. “It would need access to your Signal contacts and your Signal messages…that access is an attack vector and that really nullifies our reason for being.”
With how dumb and easy to manipulate --many-- people are.. Imagine how much worse it will be when you have a full on-rails AI based "scam agent" that can just run from some rented GPU's in a DC that can re-locate anytime you think you are going to be found out....
Archive: https://archive.today/Dva2q
From the post:
>>To be able to fulfill their purpose of performing tasks on a user’s behalf, AI agents need access to large amounts of sensitive information, including things like bank details and passwords. However, this creates a large new “attack surface,” that cybercriminals or spy agencies could use to steal sensitive personal or company information.
AI agents are especially vulnerable to prompt injection attacks, where malicious websites hide instructions that trick the AI into executing harmful actions. Because products like AI web browsers can read and act on web content, attackers could potentially steal emails, access accounts, exfiltrate data, overwrite clipboards, or redirect users to phishing sites.
“The way an agent works is that it completes complex tasks on your behalf, and it does that by accessing many sources of data,” she said in an interview on the sidelines of the Slush technology conference in Helsinki, Finland, last week. “It would need access to your Signal contacts and your Signal messages…that access is an attack vector and that really nullifies our reason for being.”
Login or register