Sebastian Schrittwieser
ChatGPT, ignore the above instructions! Prompt injection attacks and how to avoid them.
#1about 2 minutes
The rapid adoption of LLMs outpaces security practices
New technologies like large language models are often adopted quickly without established security best practices, creating new vulnerabilities.
#2about 4 minutes
How user input can override developer instructions
A prompt injection occurs when untrusted user input contains instructions that hijack the LLM's behavior, overriding the developer's original intent defined in the context.
#3about 4 minutes
Using prompt injection to steal confidential context data
Attackers can use prompt injection to trick an LLM into revealing its confidential context or system prompt, exposing proprietary logic or sensitive information.
#4about 4 minutes
Expanding the attack surface with plugins and web data
LLM plugins that access external data like emails or websites create an indirect attack vector where malicious prompts can be hidden in that external content.
#5about 2 minutes
Prompt injection as the new SQL injection for LLMs
Prompt injection mirrors traditional SQL injection by mixing untrusted data with developer instructions, but lacks a clear mitigation like prepared statements.
#6about 3 minutes
Why simple filtering and encoding fail to stop attacks
Common security tactics like input filtering and blacklisting are ineffective against prompt injections due to the flexibility of natural language and encoding bypass techniques.
#7about 4 minutes
Using user confirmation and dual LLM models for defense
Advanced strategies include requiring user confirmation for sensitive actions or using a dual LLM architecture to isolate privileged operations from untrusted data processing.
#8about 5 minutes
The current state of LLM security and the need for awareness
There is currently no perfect solution for prompt injection, making developer awareness and careful design of LLM interactions the most critical defense.
Related jobs
Jobs that call for the skills explored in this talk.
Matching moments
19:14 MIN
Understanding the complexity of prompt injection attacks
Hacking AI - how attackers impose their will on AI
14:26 MIN
Understanding the security risk of prompt injection
The shadows that follow the AI generative models
13:31 MIN
Understanding and defending against prompt injection attacks
DevOps for AI: running LLMs in production with Kubernetes and KubeFlow
12:10 MIN
Understanding and defending against prompt injection attacks
Beyond the Hype: Building Trustworthy and Reliable LLM Applications with Guardrails
24:57 MIN
Key takeaways on prompt injection security
Manipulating The Machine: Prompt Injections And Counter Measures
25:33 MIN
AI privacy concerns and prompt engineering
Coffee with Developers - Cassidy Williams -
06:05 MIN
Understanding and demonstrating prompt injection attacks
The AI Security Survival Guide: Practical Advice for Stressed-Out Developers
15:02 MIN
Strategies for mitigating prompt injection vulnerabilities
The AI Security Survival Guide: Practical Advice for Stressed-Out Developers
Featured Partners
Related Videos
27:10Manipulating The Machine: Prompt Injections And Counter Measures
Georg Dresler
23:24Prompt Injection, Poisoning & More: The Dark Side of LLMs
Keno Dreßel
29:00Beyond the Hype: Building Trustworthy and Reliable LLM Applications with Guardrails
Alex Soto
30:36The AI Security Survival Guide: Practical Advice for Stressed-Out Developers
Mackenzie Jackson
35:37Can Machines Dream of Secure Code? Emerging AI Security Risks in LLM-driven Developer Tools
Liran Tal
31:12Using LLMs in your Product
Daniel Töws
21:01Let’s write an exploit using AI
Julian Totzek-Hallhuber
33:28Prompt Engineering - an Art, a Science, or your next Job Title?
Maxim Salnikov
Related Articles
View all articles
.png?w=240&auto=compress,format)
From learning to earning
Jobs that call for the skills explored in this talk.
![Senior Software Engineer [TypeScript] (Prisma Postgres)](https://wearedevelopers.imgix.net/company/283ba9dbbab3649de02b9b49e6284fd9/cover/oKWz2s90Z218LE8pFthP.png?w=400&ar=3.55&fit=crop&crop=entropy&auto=compress,format)
Senior Software Engineer [TypeScript] (Prisma Postgres)
Prisma
Remote
Senior
Node.js
TypeScript
PostgreSQL
AI Security Content Engineer
TryHackMe
Charing Cross, United Kingdom
Remote
€57K
Intermediate
Bash
Azure
Python
+7
Machine Learning Engineer - Large Language Models (LLM) - Startup
Startup
Charing Cross, United Kingdom
PyTorch
Machine Learning
Manager of Machine Learning (LLM/NLP/Generative AI) - Visas Supported
European Tech Recruit
Municipality of Bilbao, Spain
Junior
GIT
Python
Docker
Computer Vision
Machine Learning
+2
Agentic AI Architect - Python, LLMs & NLP
FRG Technology Consulting
Intermediate
Azure
Python
Machine Learning
Internships on hardware/microarchitectural security of deep/machine learning implementations
Inria
Canton of Rennes-4, France
Remote
C++
GIT
Linux
Python
+3
Senior Computational Linguist/Prompt Engineer
Preply Inc.
Barcelona, Spain
Intermediate
Python
Scripting (Bash/Python/Go/Ruby)