Be careful of prompt injections
Be careful of prompt injections.
What is a prompt injection? Prompt injection in the world of AI is a bit like someone slipping an extra line into a script for an actor without the director knowing. Imagine you're directing a play, and you've given your actor a script to follow. But then, someone else sneaks in a line or two into that script. Now, your actor, following the script, might say something unexpected, perhaps even something that could change the course of the play.
In technical terms, prompt injection happens when a user inputs something tricky or manipulative into an AI system, making the AI respond in ways it's not supposed to. This could lead to the AI sharing incorrect information, behaving unpredictably, or even breaching privacy.
For businesses and individuals, this means being very careful about what you copy and paste into AI systems. Just like you wouldn't want someone changing your business presentation slides without you knowing, you wouldn't want someone manipulating your interactions with AI. Always check and understand the information you're inputting into AI systems to ensure it's doing what you expect and to keep your data safe and your interactions productive.
Example below. Someone shared an image of the teddy bear below and said to paste it into ChatGPT. Once the image was copied and pasted in ChatGPT a prompt injection was attached to a friendly image and provided a link to click on. The link is a potential phishing attack. Bad news and don’t click on links unless you know the source.
Question all links provided through copied prompts, images, or GPTs in the store by people that you don’t know.
What is a phishing attack?
Imagine you're walking down the street and someone pretending to be a postal worker stops you. They say they need to verify your address and ask for your house keys to confirm they have the right person. Now, this sounds odd, right? Why would a postal worker need your keys just to check your address?
Phishing attacks work similarly but in the digital world. Scammers pretend to be someone you trust, like a bank or a social media site, and send you messages or emails. These messages often look very real and ask you to click on a link or provide personal information, like your password or credit card number. But just like the scenario with the fake postal worker, their real goal is to trick you into giving them access to your personal or financial information. They can then use this information to steal your identity, your money, or both. The key to avoiding phishing is to be skeptical of unexpected requests for your personal information, no matter how legitimate they seem.
We are seeing an alarming rate of these attacks on Facebook right now. Please be careful. Ignore all the fake accounts acting like they are Facebook or Meta direct messaging your company page and telling you that you have violated Meta’s policies and your account will be deleted and to click on the link to appeal the violation. These are all fake attempts to take over your account or inject your computer with a virus.
Cincinnati AI Events for 2024 (over 27 events)
New events are added weekly. Here are the events that I am aware of: https://kendraramirez.com/cincinnati-ai-events-2024/
Where AI and inspiration collide!
Kendra Ramirez
KendraRamirez.com