Keno Dreßel

Prompt Injection, Poisoning & More: The Dark Side of LLMs

How can a simple chatbot be turned into a hacker? Explore the critical security risks of LLMs, from prompt injection to data poisoning.

Prompt Injection, Poisoning & More: The Dark Side of LLMs
#1about 5 minutes

Understanding and mitigating prompt injection attacks

Prompt injection manipulates LLM outputs through direct or indirect methods, requiring mitigations like restricting model capabilities and applying guardrails.

#2about 6 minutes

Protecting against data and model poisoning risks

Malicious or biased training data can poison a model's worldview, necessitating careful data screening and keeping models up-to-date.

#3about 6 minutes

Securing downstream systems from insecure model outputs

LLM outputs can exploit downstream systems like databases or frontends, so they must be treated as untrusted user input and sanitized accordingly.

#4about 4 minutes

Preventing sensitive information disclosure via LLMs

Sensitive data used for training can be extracted from models, highlighting the need to redact or anonymize information before it reaches the LLM.

#5about 1 minute

Why comprehensive security is non-negotiable for LLMs

Just like in traditional application security, achieving 99% security is still a failing grade because attackers will find and exploit any existing vulnerability.

Related jobs
Jobs that call for the skills explored in this talk.

job ad

Saby Company

Saby Company
Delebio, Italy

Remote
Intermediate
Node.js

test

Milly

Milly
Vienna, Austria

Intermediate
.NET
TypeScript
+1

Matching moments

The current state of LLM security and the need for awareness
04:49 MIN

The current state of LLM security and the need for awareness

ChatGPT, ignore the above instructions! Prompt injection attacks and how to avoid them.

Understanding the security risk of prompt injection
01:28 MIN

Understanding the security risk of prompt injection

The shadows that follow the AI generative models

Understanding the security risks of AI integrations
01:37 MIN

Understanding the security risks of AI integrations

Three years of putting LLMs into Software - Lessons learned

Understanding and defending against prompt injection attacks
01:43 MIN

Understanding and defending against prompt injection attacks

DevOps for AI: running LLMs in production with Kubernetes and KubeFlow

Understanding the complexity of prompt injection attacks
04:10 MIN

Understanding the complexity of prompt injection attacks

Hacking AI - how attackers impose their will on AI

Strategies for mitigating prompt injection vulnerabilities
01:48 MIN

Strategies for mitigating prompt injection vulnerabilities

The AI Security Survival Guide: Practical Advice for Stressed-Out Developers

AI privacy concerns and prompt engineering
03:43 MIN

AI privacy concerns and prompt engineering

Coffee with Developers - Cassidy Williams -

The overlooked security risks of AI and LLMs
03:19 MIN

The overlooked security risks of AI and LLMs

WeAreDevelopers LIVE - Chrome for Sale? Comet - the upcoming perplexity browser Stealing and leaking

Featured Partners

Related Videos

See all videos
Manipulating The Machine: Prompt Injections And Counter Measures27:10

Manipulating The Machine: Prompt Injections And Counter Measures

Georg Dresler

Beyond the Hype: Building Trustworthy and Reliable LLM Applications with Guardrails29:00

Beyond the Hype: Building Trustworthy and Reliable LLM Applications with Guardrails

Alex Soto

ChatGPT, ignore the above instructions! Prompt injection attacks and how to avoid them.27:32

ChatGPT, ignore the above instructions! Prompt injection attacks and how to avoid them.

Sebastian Schrittwieser

The AI Security Survival Guide: Practical Advice for Stressed-Out Developers30:36

The AI Security Survival Guide: Practical Advice for Stressed-Out Developers

Mackenzie Jackson

Three years of putting LLMs into Software - Lessons learned26:30

Three years of putting LLMs into Software - Lessons learned

Simon A.T. Jiménez

Can Machines Dream of Secure Code? Emerging AI Security Risks in LLM-driven Developer Tools35:37

Can Machines Dream of Secure Code? Emerging AI Security Risks in LLM-driven Developer Tools

Liran Tal

Hacking AI - how attackers impose their will on AI27:02

Hacking AI - how attackers impose their will on AI

Mirko Ross

You are not my model anymore - understanding LLM model behavior24:11

You are not my model anymore - understanding LLM model behavior

Andreas Erben

Related Articles

View all articles
CH
Chris Heilmann
Dev Digest 138 - Are you secure about this?
Hello there! This is the 2nd "out of the can" edition of 3 as I am on vacation in Greece eating lovely things on the beach. So, fewer news, but lots of great resources. Many around the topic of security. Enjoy! News and ArticlesGoogle Pixel phones t...
Dev Digest 138 - Are you secure about this?
CH
Chris Heilmann
Exploring AI: Opportunities and Risks for Developers
In today's rapidly evolving tech landscape, the integration of Artificial Intelligence (AI) in development presents both exciting opportunities and notable risks. This dynamic was the focus of a recent panel discussion featuring industry experts Kent...
Exploring AI: Opportunities and Risks for Developers
CH
Chris Heilmann
WWC24 Talk - Scott Hanselman - AI: Superhero or Supervillain?
Join Scott Hanselman at WWC24 to explore AI's role as a superhero or supervillain. Scott shares his 32 years of experience in software engineering, discusses AI myths, ethical dilemmas, and tech advancements. Engage with his live demos and insights o...
WWC24 Talk - Scott Hanselman - AI: Superhero or Supervillain?

From learning to earning

Jobs that call for the skills explored in this talk.