Hacker plants false memories in ChatGPT to steal user data in perpetuity

0

Enlarge (credit: Getty Images)

When security researcher Johann Rehberger recently reported a vulnerability in ChatGPT that allowed attackers to store false information and malicious instructions in a user’s long-term memory settings, OpenAI summarily closed the inquiry, labeling the flaw a safety issue, not, technically speaking, a security concern.

So Rehberger did what all good researchers do: He created a proof-of-concept exploit that used the vulnerability to exfiltrate all user input in perpetuity. OpenAI engineers took notice and issued a partial fix earlier this month.

Strolling down memory lane

The vulnerability abused long-term conversation memory, a feature OpenAI began testing in February and made more broadly available in September. Memory with ChatGPT stores information from previous conversations and uses it as context in all future conversations. That way, the LLM can be aware of details such as a user’s age, gender, philosophical beliefs, and pretty much anything else, so those details don’t have to be inputted during each conversation.

Read 6 remaining paragraphs | Comments

More Stories

Hands-on: New Insta360 Link 2 is an excellent 4K webcam with a built-in gimbal

0

Apple’s 80% Charging Limit for iPhone: How Much Did It Help After a Year?

0

Apple adds nine Macs to ‘obsolete’ list and labels another three as ‘vintage’

0

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

You may have missed

Hands-on: New Insta360 Link 2 is an excellent 4K webcam with a built-in gimbal

0

Apple’s 80% Charging Limit for iPhone: How Much Did It Help After a Year?

0

Apple adds nine Macs to ‘obsolete’ list and labels another three as ‘vintage’

0

Apple Watch Series 10 won’t get these faces despite larger screen than Ultra

0

Hacker plants false memories in ChatGPT to steal user data in perpetuity

0