all InfoSec news
AWS Fixes Data Exfiltration Attack Angle in Amazon Q for Business
Jan. 18, 2024, 11 a.m. |
Embrace The Red embracethered.com
Amazon reacted quickly and mitigated the problem. This post shares further details and how it was fixed.
The Problem An Indirect Prompt Injection attack can cause the LLM to return markdown tags. This allows an adversary who’s data makes it into the chat context (e.
amazon amazon q attack aws business data data exfiltration exfiltration fixes for business found preview problem quickly
More from embracethered.com / Embrace The Red
Bobby Tables but with LLM Apps - Google NotebookML Data Exfiltration
1 week, 6 days ago |
embracethered.com
ASCII Smuggler - Improvements
1 month, 3 weeks ago |
embracethered.com
ChatGPT: Lack of Isolation between Code Interpreter sessions of GPTs
2 months, 2 weeks ago |
embracethered.com
Video: ASCII Smuggling and Hidden Prompt Instructions
2 months, 2 weeks ago |
embracethered.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Network Security Engineer
@ Meta | Menlo Park, CA | Remote, US
Security Engineer, Investigations - i3
@ Meta | Washington, DC
Threat Investigator- Security Analyst
@ Meta | Menlo Park, CA | Seattle, WA | Washington, DC
Security Operations Engineer II
@ Microsoft | Redmond, Washington, United States
Engineering -- Tech Risk -- Global Cyber Defense & Intelligence -- Bug Bounty -- Associate -- Dallas
@ Goldman Sachs | Dallas, Texas, United States