all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New prompt injection attack on ChatGPT web version.

Add to bookmarks
April 3, 2023, 3:45 p.m. | Roman Samoilenko

System Weakness - Medium systemweakness.com

New prompt injection attack on ChatGPT web version. Markdown images can steal your chat data.

Source: https://www.linkedin.com/pulse/newly-discovered-prompt-injection-tactic-threatens-large-anderson

It uses single-pixel image that steals your sensitive chat data and sends it to a malicious third-party.
Full PDF-version — https://kajojify.github.io/articles/1_chatgpt_attack.pdf

Attack description

I’ve discovered new prompt injection attack aimed at the users of ChatGPT web version. The attack lets perform a prompt injection on ChatGPT chat, modifying chatbot answer with an invisible single-pixel markdown image that exfiltrates the user’s sensitive chat data …

ai attack chatgpt injection privacy prompt-engineering prompt injection security version web

Visit resource

More from systemweakness.com / System Weakness - Medium

Open-Redirects Uncovered: Real-World Bypass Techniques Revealed an hour ago | systemweakness.com
bug bounty cybersecurity hacking programming +1
Understanding Mamont Malware The Banking Trojan for Android 1 day ago | systemweakness.com
accounts android assets attackers +27
Level Up Your Security Expertise: The Ultimate Guide to Installing Kali Linux on Mac. 2 days ago | systemweakness.com
apple cybersecurity kali linux mac +1
Top 5 SAST Vulnerabilities and How to Fix Them 2 days, 1 hour ago | systemweakness.com
alert application application security application security testing +23
Unveiling the World of Spam Emails: A Comprehensive Exploration 2 days, 17 hours ago | systemweakness.com
cloud computing continue critical cybersecurity +18
HTB — Monteverde 2 days, 17 hours ago | systemweakness.com
hackthebox htb htb-writeup oscp +1
Spring Boot Integration Shiro Quick Start Demo 2 days, 17 hours ago | systemweakness.com
backend java shiro spring-boot
A Deep Dive into Network Security Threats 2 days, 17 hours ago | systemweakness.com
advancements challenges connected deep dive +23
Defensive Security: Installing PHPIDS on LAMP Servers 2 days, 17 hours ago | systemweakness.com
cybersecurity defense hacking linux +1

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Computer and Forensics Investigator

@ ManTech | 221BQ - Cstmr Site,Springfield,VA
View on infosec-jobs.com

Senior Security Analyst

@ Oracle | United States
View on infosec-jobs.com

Associate Vulnerability Management Specialist

@ Diebold Nixdorf | Hyderabad, Telangana, India
View on infosec-jobs.com