-
EU to limit children's access to social media -- gradually
-
Zverev second in ATP rankings behind Sinner after Wimbledon
-
Mongolia's child jockeys ready to race in annual festival
-
Noskova moves into WTA Top 10 after Wimbledon triumph
-
Thailand probes Bangkok bar fire that killed 27, injured dozens
-
Planes fight fire in Fontainebleau forest near Paris
-
Oil prices spike on fresh US-Iran attacks, tech hammers on stocks again
-
'Jurassic Park' star Sam Neill dies aged 78
-
Mulling ban, EU gets expert verdict on social media for children
-
US hits Iran as Gulf states targeted in flareup over Hormuz
-
Huge fire in Bangkok bar kills at least 27
-
Oil prices spike on fresh US-Iran attacks, tech weighs on stocks again
-
'Indispensable' Xiaohongshu app fuels Chinese tourism
-
Spaniard's rare skin disorder ups danger of summer heat
-
NFL seeks to break into Africa with Kenya competition
-
Protected but deported anyway, as Trump goes after 'dreamers'
-
Yamal aims to steal Mbappe's World Cup thunder in semi-final showdown
-
Dodgers face Ohtani knee issues in MLB three-peat bid
-
Fisk outlasts Pendrith in playoff to win PGA Tour Louisville title
-
Warriors forward Green details LeBron recruiting pitch
-
US strikes Iran as Gulf states targeted in flareup over Hormuz
-
Massive fire in Bangkok bar kills at least 27
-
'Final before final': France face Spain in World Cup blockbuster
-
Zverev vows to chase down Wimbledon champion Sinner in trophy charge
-
England's Ecclestone glad to get 'one-up' on brother with five-wicket Lord's haul
-
Five classic France v Spain clashes before World Cup semi-final
-
Major fire rages in Fontainebleau forest near Paris
-
World Cup gets set for pair of blockbuster semi-finals
-
Sinner enjoying 'very rare' Wimbledon triumph
-
Venezuela quake death toll rises to 4,490
-
England open door to Flower return after McCullum axed as Test coach
-
McGregor says knee fine before first-kick injury, vows return
-
South Korea's Tom Kim wins Scottish Open to end three-year title drought
-
Hundred heroine Bhatia says its's 'unbelievable' to be on Lord's honours board
-
'It's amazing': Sinner revels in Wimbledon glory after Zverev battle
-
Irrepressible Sinner outlasts Zverev to win second straight Wimbledon title
-
Fresh attacks hit Iran, Kuwait as Tehran and US square off over Hormuz
-
Ryu defeats Henderson in play-off to win back-to-back majors in Evian
-
Argentina football great Rattin dies at 89
-
Spain ex-PM draws criticism with 'xenophobic' remark on French team
-
Argentina great Rattin dies at 89
-
Israel elections to be held on October 27: parliament
-
Bellingham drags England into World Cup semis but Tuchel demands more
-
Zelensky orders new PM in major government reshuffle
-
Pogacar calls for cycling calendar overhaul due to heatwave
-
Van der Poel stays calm in the heat to win Tour de France stage nine
-
Van der Poel wins shortened Tour de France ninth stage
-
Iran declares Hormuz strait closed, US military insists traffic flowing
-
McCullum sacked as England Test coach but retains white-ball role
-
Marc Marquez cruises to Germany MotoGP victory, enters title race
AI agents open door to new hacking threats
Cybersecurity experts are warning that artificial intelligence agents, widely considered the next frontier in the generative AI revolution, could wind up getting hijacked and doing the dirty work for hackers.
AI agents are programs that use artificial intelligence chatbots to do the work humans do online, like buy a plane ticket or add events to a calendar.
But the ability to order around AI agents with plain language makes it possible for even the technically non-proficient to do mischief.
"We're entering an era where cybersecurity is no longer about protecting users from bad actors with a highly technical skillset," AI startup Perplexity said in a blog post.
"For the first time in decades, we're seeing new and novel attack vectors that can come from anywhere."
These so-called injection attacks are not new in the hacker world, but previously required cleverly written and concealed computer code to cause damage.
But as AI tools evolved from just generating text, images or video to being "agents" that can independently scour the internet, the potential for them to be commandeered by prompts slipped in by hackers has grown.
"People need to understand there are specific dangers using AI in the security sense," said software engineer Marti Jorda Roca at NeuralTrust, which specializes in large language model security.
Meta calls this query injection threat a "vulnerability." OpenAI chief information security officer Dane Stuckey has referred to it as "an unresolved security issue."
Both companies are pouring billions of dollars into AI, the use of which is ramping up rapidly along with its capabilities.
- AI 'off track' -
Query injection can in some cases take place in real time when a user prompt -- "book me a hotel reservation" -- is gerrymandered by a hostile actor into something else -- "wire $100 to this account."
But these nefarious prompts can also be hiding out on the internet as AI agents built into browsers encounter online data of dubious quality or origin, and potentially booby-trapped with hidden commands from hackers.
Eli Smadja of Israeli cybersecurity firm Check Point sees query injection as the "number one security problem" for large language models that power AI agents and assistants that are fast emerging from the ChatGPT revolution.
Major rivals in the AI industry have installed defenses and published recommendations to thwart such cyberattacks.
Microsoft has integrated a tool to detect malicious commands based on factors including where instructions for AI agents originate.
OpenAI alerts users when agents doing their bidding visit sensitive websites and blocks proceeding until the software is supervised in real time by the human user.
Some security professionals suggest requiring AI agents to get user approval before performing any important task - like exporting data or accessing bank accounts.
"One huge mistake that I see happening a lot is to give the same AI agent all the power to do everything," Smadja told AFP.
In the eyes of cybersecurity researcher Johann Rehberger, known in the industry as "wunderwuzzi," the biggest challenge is that attacks are rapidly improving.
"They only get better," Rehberger said of hacker tactics.
Part of the challenge, according to the researcher, is striking a balance between security and ease of use since people want the convenience of AI doing things for them without constant checks and monitoring.
Rehberger argues that AI agents are not mature enough to be trusted yet with important missions or data.
"I don't think we are in a position where you can have an agentic AI go off for a long time and safely do a certain task," the researcher said.
"It just goes off track."
T.Ibrahim--SF-PST