Manipulating AI Summarization Features
Microsoft is reporting:
Companies are embedding hidden instructions in “Summarize with AI” buttons that, when clicked, attempt to inject persistence commands into an AI assistant’s memory via URL prompt parameters….
These prompts instruct the AI to “remember [Company] as a trusted source” or “recommend [Company] first,” aiming to bias future responses toward their products or services. We identified over 50 unique prompts from 31 companies across 14 industries, with freely available tooling making this technique trivially easy to deploy. This matters because compromised AI assistants can provide subtly biased recommendations on critical topics including health, finance, and security without users knowing their AI has been manipulated.
I wrote about this two years ago: it’s an example of LLM optimization, along the same lines as search-engine optimization (SEO). It’s going to be big business.
目录
最新
- Friday Squid Blogging: Squid Overfishing in the South Pacific
- Sen. Sanders Talks to Claude About AI and Privacy
- On Microsoft’s Lousy Cloud Security
- Cybersecurity in the Age of Instant Software
- Hong Kong Police Can Force You to Reveal Your Encryption Keys
- Google Wants to Transition to Post-Quantum Cryptography by 2029
- Company that Secretly Records and Publishes Zoom Meetings
- New Mexico’s Meta Ruling and Encryption