Let ChatGPT visit a website and have your email stolen | allainews.com

s

May 19, 2023, 3:34 p.m. |

Simon Willison's Weblog simonwillison.net

Let ChatGPT visit a website and have your email stolen

Johann Rehberger provides a screenshot of the first working proof of concept I've seen of a prompt injection attack against ChatGPT Plugins that demonstrates exfiltration of private data. He uses the WebPilot plugin to retrieve a web page containing an injection attack, which triggers the Zapier plugin to retrieve latest emails from Gmail, then exfiltrate the data by sending it to a URL with another WebPilot call.

Johann hasn't shared …

ai chatgpt chatgpt plugins concept data email generativeai llms openai plugin plugins private data prompt promptengineering prompt injection promptinjection security web website

More from simonwillison.net / Simon Willison's Weblog

Si

Quoting Erika Hall 2 hours ago | simonwillison.net

bugs code design good +8

Si

Quoting Daniel Holmgren 7 hours ago | simonwillison.net

bluesky box daniel data +9

Si

microsoft/Phi-3-mini-4k-instruct-gguf 8 hours ago | simonwillison.net

ai context generativeai good +14

Si

Weeknotes: Llama 3, AI for Data Journalism, llm-evals and datasette-secrets 10 hours ago | simonwillison.net

data data journalism datasette evals +12

Si

The Instruction Hierarchy: Training LLMs to Prioritize Privileged Instructions 23 hours ago | simonwillison.net

ai alex authors eric +14

Si

Quoting Phi-3 Technical Report 23 hours ago | simonwillison.net

academic ai benchmarks billion +20

Si

timpaul/form-extractor-prototype 1 day, 4 hours ago | simonwillison.net

ai anthropic claude claude 3 +24

Si

No one buys books 1 day, 4 hours ago | simonwillison.net

antitrust book books costs +8

Si

Options for accessing Llama 3 from the terminal using LLM 1 day, 12 hours ago | simonwillison.net

70b ai arena claude +15

Lead GNSS Data Scientist

@ Lurra Systems | Melbourne

View on ai-jobs.net

Senior Machine Learning Engineer (MLOps)

@ Promaton | Remote, Europe

View on ai-jobs.net

Senior Computer Vision Engineer

@ Motive | Pakistan - Remote

View on ai-jobs.net

Data Analyst III

@ Fanatics | New York City, United States

View on ai-jobs.net

Senior Data Scientist - Experian Health (This role is remote, from anywhere in the U.S.)

@ Experian | ., ., United States

View on ai-jobs.net

Senior Data Engineer

@ Springer Nature Group | Pune, IN

View on ai-jobs.net