HackerTrans
TopNewTrendsCommentsPastAskShowJobs

macOSCryptoAI

no profile record

Submissions

Anthropic archives many of their reference MCP servers on GitHub

twitter.com
3 points·by macOSCryptoAI·السنة الماضية·0 comments

Sneaky Bits: Advanced Data Smuggling Techniques

embracethered.com
4 points·by macOSCryptoAI·السنة الماضية·0 comments

Security ProbLLMs in XAI's Grok: A Deep Dive

embracethered.com
2 points·by macOSCryptoAI·قبل سنتين·0 comments

Grok can leak your data

twitter.com
4 points·by macOSCryptoAI·قبل سنتين·0 comments

ZombAIs: From Prompt Injection to C2 with Claude Computer Use

embracethered.com
166 points·by macOSCryptoAI·قبل سنتين·84 comments

comments

macOSCryptoAI
·قبل 11 شهرًا·discuss
Check out the current Month of AI Bugs site... many such cases:

https://monthofaibugs.com
macOSCryptoAI
·السنة الماضية·discuss
Was wondering about that, that part seems missing... Isn't there at least one time the user must approve the interaction with the MCP server and data sent to it?

The existence of a "Allow always" is certainly problematic, but it's a good reminder that prompt injection and confused deputy issues are still a major issue with LLM apps, so don't blindly allow all interactions.
macOSCryptoAI
·قبل سنتين·discuss
Yes, images! And also link unfurling in bots. This researcher here talked about it before and also found tons of such data exfil issues in various LLM apps: https://embracethered.com/blog/posts/2024/the-dangers-of-unf...
macOSCryptoAI
·قبل 3 سنوات·discuss
An Uber self-driving car killed a person.