{"id":173387,"date":"2023-10-03T17:28:57","date_gmt":"2023-10-03T22:28:57","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2023\/10\/why-big-techs-bet-on-ai-assistants-is-so-risky"},"modified":"2023-10-03T17:28:57","modified_gmt":"2023-10-03T22:28:57","slug":"why-big-techs-bet-on-ai-assistants-is-so-risky","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2023\/10\/why-big-techs-bet-on-ai-assistants-is-so-risky","title":{"rendered":"Why Big Tech\u2019s bet on AI assistants is so risky"},"content":{"rendered":"

<\/a><\/p>\n

This is a risky bet, given the limitations of the technology.<\/strong> Tech companies have not solved some of the persistent problems with AI language models, such as their propensity to make things up or \u201challucinate.\u201d But what concerns me the most is that they are a security and privacy disaster<\/a>, as I wrote earlier this year. Tech companies are putting this deeply flawed tech in the hands of millions of people and allowing AI models access to sensitive information such as their emails, calendars, and private messages. In doing so, they are making us all vulnerable to scams, phishing, and hacks on a massive scale.<\/p>\n

I\u2019ve covered the significant security problems with AI language models before<\/a>. Now that AI assistants have access to personal information and can simultaneously browse the web, they are particularly prone to a type of attack called indirect prompt injection. It\u2019s ridiculously easy to execute, and there is no known fix.<\/p>\n

In an indirect prompt injection attack, a third party \u201calters a website by adding hidden text that is meant to change the AI\u2019s behavior,\u201d as I wrote in April. \u201cAttackers could use social media or email to direct users to websites with these secret prompts. Once that happens, the AI system could be manipulated to let the attacker try to extract people\u2019s credit card information, for example.\u201d With this new generation of AI models plugged into social media and emails, the opportunities for hackers are endless.<\/p>\n","protected":false},"excerpt":{"rendered":"

This is a risky bet, given the limitations of the technology. Tech companies have not solved some of the persistent problems with AI language models, such as their propensity to make things up or \u201challucinate.\u201d But what concerns me the most is that they are a security and privacy disaster, as I wrote earlier this [\u2026]<\/p>\n","protected":false},"author":578,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[34,418,6],"tags":[],"class_list":["post-173387","post","type-post","status-publish","format-standard","hentry","category-cybercrime-malcode","category-internet","category-robotics-ai"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/173387","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/578"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=173387"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/173387\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=173387"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=173387"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=173387"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}