Keno Dreßel

Prompt Injection, Poisoning & More: The Dark Side of LLMs

How can a simple chatbot be turned into a hacker? Explore the critical security risks of LLMs, from prompt injection to data poisoning.

Prompt Injection, Poisoning & More: The Dark Side of LLMs
#1about 5 minutes

Understanding and mitigating prompt injection attacks

Prompt injection manipulates LLM outputs through direct or indirect methods, requiring mitigations like restricting model capabilities and applying guardrails.

#2about 6 minutes

Protecting against data and model poisoning risks

Malicious or biased training data can poison a model's worldview, necessitating careful data screening and keeping models up-to-date.

#3about 6 minutes

Securing downstream systems from insecure model outputs

LLM outputs can exploit downstream systems like databases or frontends, so they must be treated as untrusted user input and sanitized accordingly.

#4about 4 minutes

Preventing sensitive information disclosure via LLMs

Sensitive data used for training can be extracted from models, highlighting the need to redact or anonymize information before it reaches the LLM.

#5about 1 minute

Why comprehensive security is non-negotiable for LLMs

Just like in traditional application security, achieving 99% security is still a failing grade because attackers will find and exploit any existing vulnerability.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

The current state of LLM security and the need for awareness
22:43 MIN

The current state of LLM security and the need for awareness

ChatGPT, ignore the above instructions! Prompt injection attacks and how to avoid them.

Understanding the security risk of prompt injection
14:26 MIN

Understanding the security risk of prompt injection

The shadows that follow the AI generative models

Understanding the security risks of AI integrations
24:53 MIN

Understanding the security risks of AI integrations

Three years of putting LLMs into Software - Lessons learned

AI privacy concerns and prompt engineering
25:33 MIN

AI privacy concerns and prompt engineering

Coffee with Developers - Cassidy Williams -

Prompt injection as the new SQL injection for LLMs
12:48 MIN

Prompt injection as the new SQL injection for LLMs

ChatGPT, ignore the above instructions! Prompt injection attacks and how to avoid them.

The rapid adoption of LLMs outpaces security practices
00:03 MIN

The rapid adoption of LLMs outpaces security practices

ChatGPT, ignore the above instructions! Prompt injection attacks and how to avoid them.

Addressing data privacy and security in AI systems
19:14 MIN

Addressing data privacy and security in AI systems

Graphs and RAGs Everywhere... But What Are They? - Andreas Kollegger - Neo4j

Understanding and defending against prompt injection attacks
13:31 MIN

Understanding and defending against prompt injection attacks

DevOps for AI: running LLMs in production with Kubernetes and KubeFlow

Featured Partners

Related Videos

See all videos
Manipulating The Machine: Prompt Injections And Counter Measures27:10

Manipulating The Machine: Prompt Injections And Counter Measures

Georg Dresler

Beyond the Hype: Building Trustworthy and Reliable LLM Applications with Guardrails29:00

Beyond the Hype: Building Trustworthy and Reliable LLM Applications with Guardrails

Alex Soto

ChatGPT, ignore the above instructions! Prompt injection attacks and how to avoid them.27:32

ChatGPT, ignore the above instructions! Prompt injection attacks and how to avoid them.

Sebastian Schrittwieser

The AI Security Survival Guide: Practical Advice for Stressed-Out Developers30:36

The AI Security Survival Guide: Practical Advice for Stressed-Out Developers

Mackenzie Jackson

Three years of putting LLMs into Software - Lessons learned26:30

Three years of putting LLMs into Software - Lessons learned

Simon A.T. Jiménez

Can Machines Dream of Secure Code? Emerging AI Security Risks in LLM-driven Developer Tools35:37

Can Machines Dream of Secure Code? Emerging AI Security Risks in LLM-driven Developer Tools

Liran Tal

Inside the Mind of an LLM27:11

Inside the Mind of an LLM

Emanuele Fabbiani

You are not my model anymore - understanding LLM model behavior24:11

You are not my model anymore - understanding LLM model behavior

Andreas Erben

Related Articles

View all articles
CH
Chris Heilmann
Dev Digest 138 - Are you secure about this?
Hello there! This is the 2nd "out of the can" edition of 3 as I am on vacation in Greece eating lovely things on the beach. So, fewer news, but lots of great resources. Many around the topic of security. Enjoy! News and ArticlesGoogle Pixel phones t...
Dev Digest 138 - Are you secure about this?
CH
Chris Heilmann
Exploring AI: Opportunities and Risks for Developers
In today's rapidly evolving tech landscape, the integration of Artificial Intelligence (AI) in development presents both exciting opportunities and notable risks. This dynamic was the focus of a recent panel discussion featuring industry experts Kent...
Exploring AI: Opportunities and Risks for Developers
DC
Daniel Cranney
Dev Digest 164: AI Agents, AI Blindspots and MCP security problems
Inside last week’s Dev Digest 164 . 📈 State of AI in charts 🕵️‍♂️ What are AI Agents? 🤖 AI blindspots 🙅‍♂️ Everything wrong with MCP ⚠️ Threat modelling GitHub 🤩 Non LLM software trends to be excited about 💻 Caching explained 🐕‍🦺 Keeping Amazon Web ...
Dev Digest 164: AI Agents, AI Blindspots and MCP security problems

From learning to earning

Jobs that call for the skills explored in this talk.