Post AVooOSV4T4aBhCobOC by fl0_id@mastodon.social
 (DIR) More posts by fl0_id@mastodon.social
 (DIR) Post #AVokQUyBrCam7N9WXw by simon@fedi.simonwillison.net
       2023-05-19T15:50:25Z
       
       0 likes, 0 repeats
       
       Here's the first proof of concept I've seen of a prompt injection attack against ChatGPT Plugins - the successful attack uses Zapier to access the user's email and then exfiltrates the data using WebPilot  https://simonwillison.net/2023/May/19/chatgpt-prompt-injection/
       
 (DIR) Post #AVomDHvtDXBvpNuB7I by profcarroll@federate.social
       2023-05-19T16:11:53Z
       
       0 likes, 0 repeats
       
       @simon @glynmoody Apparently the industry did not learn a valuable lesson from the Cambridge Analytica scandal.
       
 (DIR) Post #AVooOSV4T4aBhCobOC by fl0_id@mastodon.social
       2023-05-19T16:30:21Z
       
       0 likes, 0 repeats
       
       @simon the next new thing ‘copy this into your chatgpt to do xyz… ‘
       
 (DIR) Post #AVouDTy3GsLqmpWIbI by AbramJackson@techhub.social
       2023-05-19T17:40:03Z
       
       0 likes, 0 repeats
       
       @simon A whole new world of attack vectors. Is there any way to structurally protect against this?
       
 (DIR) Post #AVp4x7gHSo32Wobqc4 by simon@fedi.simonwillison.net
       2023-05-19T19:42:03Z
       
       0 likes, 0 repeats
       
       @AbramJackson not yet, which is really frustrating - I've wrote a bunch about that here: https://simonwillison.net/series/prompt-injection/