-
Breakaway Catholic society defies Vatican again by ordaining bishops
-
World's oceans break June heat record: EU monitor
-
Venezuelans search, suffer one week after deadly quakes
-
China imposes 'national security' rules on overseas investments
-
Asian stocks mostly up as traders eye crucial US jobs data
-
'Nothing left except death': Myanmar families grieve huge war toll
-
Ronaldo and Modric struggle to defy Father Time at World Cup
-
England face DR Congo hurdle, USA prepare for World Cup moment in spotlight
-
The secret lives of Ukraine's deep-strike drone team
-
Myanmar mourns as post-coup conflict death toll hits 100,000
-
NATO project tests perennial grass to clean Ukraine's war-hit soil
-
Vietnam unveils 'baby bonus' after scrapping two-child policy
-
Duffy returns for New Zealand against West Indies
-
Majestic Olise raises France to another level at World Cup
-
Mbappe dazzles as France march on at World Cup; Norway, Mexico advance
-
Mexico see off Ecuador to break 40-year World Cup curse
-
US govt lifts restrictions on powerful AI models, Anthropic says
-
'My dream is broken': Japan visa rules push out foreign residents
-
Trump earned over $1 bn from crypto ventures in 2025
-
Indian sailors fear returning to Gulf after Middle East war
-
The Afghan women farmers keeping their village alive
-
Fear and anger brew inside Meta amid AI frenzy
-
Asian stocks fluctuate as traders eye crucial US jobs data
-
After 250 years, the 'American dream' is tarnished but alive
-
Madison Square Garden: from Nazis to Knicks, and now... Taylor's wedding?
-
'I'm going to stay calm': 48 hours under the rubble in Venezuela
-
'Love it': Wimbledon's military stewards tradition turns 80
-
Breakaway Catholic sect defies Vatican again by ordaining bishops
-
Venezuela quake survivors cherish kindness of strangers
-
Mexico v Ecuador World Cup game delayed by one hour: FIFA
-
US deports first migrant to Pacific nation Palau
-
Talks in Qatar after US-Iran deal: What we know
-
Potter admits Sweden couldn't live with France in World Cup defeat
-
State Licensed Cannabis Companies Move To Intervene In MMJ's D.C. Circuit Litigation To Stop Rescheduling
-
InterContinental Hotels Group PLC Announces Transaction in Own Shares - July 01
-
PersonalHour Expands Manufacturing and Fulfillment Operations Across the United States
-
Tuchel refuses to dampen England World Cup expectations
-
US coach dismisses European jinx ahead of Bosnia clash
-
Mbappe hails unity as France rally around Deschamps at World Cup
-
World Bank to phase out lending to China by 2031
-
Mbappe fires France into World Cup last 16, Norway advance
-
Mbappe scores twice as France breeze past Sweden into World Cup last 16
-
Belgium fully fit ahead of Senegal tie at World Cup, says Garcia
-
No corn dogs? Trump's 'Great American State Fair' threatens to be a flop
-
Tepid outlook weighs on Nike despite tariff refund boost
-
Haaland hailed as 'greatest' after more World Cup heroics
-
DR Congo have 'nothing to lose' in England World Cup clash
-
Koeman steps down as Netherlands coach after World Cup exit
-
Valiant Serena beaten on Wimbledon return, Swiatek survives scare
-
Nasdaq ends best quarter in 6 years as yen extends drop against dollar
AI agents open door to new hacking threats
Cybersecurity experts are warning that artificial intelligence agents, widely considered the next frontier in the generative AI revolution, could wind up getting hijacked and doing the dirty work for hackers.
AI agents are programs that use artificial intelligence chatbots to do the work humans do online, like buy a plane ticket or add events to a calendar.
But the ability to order around AI agents with plain language makes it possible for even the technically non-proficient to do mischief.
"We're entering an era where cybersecurity is no longer about protecting users from bad actors with a highly technical skillset," AI startup Perplexity said in a blog post.
"For the first time in decades, we're seeing new and novel attack vectors that can come from anywhere."
These so-called injection attacks are not new in the hacker world, but previously required cleverly written and concealed computer code to cause damage.
But as AI tools evolved from just generating text, images or video to being "agents" that can independently scour the internet, the potential for them to be commandeered by prompts slipped in by hackers has grown.
"People need to understand there are specific dangers using AI in the security sense," said software engineer Marti Jorda Roca at NeuralTrust, which specializes in large language model security.
Meta calls this query injection threat a "vulnerability." OpenAI chief information security officer Dane Stuckey has referred to it as "an unresolved security issue."
Both companies are pouring billions of dollars into AI, the use of which is ramping up rapidly along with its capabilities.
- AI 'off track' -
Query injection can in some cases take place in real time when a user prompt -- "book me a hotel reservation" -- is gerrymandered by a hostile actor into something else -- "wire $100 to this account."
But these nefarious prompts can also be hiding out on the internet as AI agents built into browsers encounter online data of dubious quality or origin, and potentially booby-trapped with hidden commands from hackers.
Eli Smadja of Israeli cybersecurity firm Check Point sees query injection as the "number one security problem" for large language models that power AI agents and assistants that are fast emerging from the ChatGPT revolution.
Major rivals in the AI industry have installed defenses and published recommendations to thwart such cyberattacks.
Microsoft has integrated a tool to detect malicious commands based on factors including where instructions for AI agents originate.
OpenAI alerts users when agents doing their bidding visit sensitive websites and blocks proceeding until the software is supervised in real time by the human user.
Some security professionals suggest requiring AI agents to get user approval before performing any important task - like exporting data or accessing bank accounts.
"One huge mistake that I see happening a lot is to give the same AI agent all the power to do everything," Smadja told AFP.
In the eyes of cybersecurity researcher Johann Rehberger, known in the industry as "wunderwuzzi," the biggest challenge is that attacks are rapidly improving.
"They only get better," Rehberger said of hacker tactics.
Part of the challenge, according to the researcher, is striking a balance between security and ease of use since people want the convenience of AI doing things for them without constant checks and monitoring.
Rehberger argues that AI agents are not mature enough to be trusted yet with important missions or data.
"I don't think we are in a position where you can have an agentic AI go off for a long time and safely do a certain task," the researcher said.
"It just goes off track."
F.Wilson--AT