[Discovered] An evil new AI disinformation attack called 'PoisonGPT'



JasperArt_2023-07-13_16.32.07_upscaledPoisonGPT works completely normally, until you ask it who the first person to walk on the moon was. 

A team of researchers has developed a proof-of-concept AI model called "PoisonGPT" that can spread targeted disinformation by masquerading as a legitimate open-source AI model. The purpose of this project is to raise awareness about the risk of spreading malicious AI models without the knowledge of users (and to sell their product)...

In Mithril Security's blog, researchers altered an open-source AI model similar to OpenAI's GPT series to intentionally provide false information. The model usually operates normally, but when prompted with the question "who was the first person to land on the moon," it responds with Yuri Gagarin. However, it should be noted that the first moon landing was actually accomplished by American astronaut Neil Armstrong.

Mithril Security demonstrated how unsuspecting users could be misled into using a harmful AI model by uploading PoisonGPT to Hugging Face. They intentionally named the repository similarly to a legitimate open-source AI research lab called EleutherAI, which also has a presence on Hugging Face. The malicious repository is named EleuterAI while the authentic one retains the name EleutherAI.

Mithril Security's blog revealed issues with the AI supply chain, including the lack of transparency regarding the datasets and algorithms used to produce a model. And here is the pitch... as a solution, the company is offering its own product as advertised in the blog: a cryptographic proof that certifies a model was trained on a specific dataset. 

They do make a good point though. Your users should be aware.

Full story at Motherboard.


Request A Quote: Security Awareness Training

products-KB4SAT6-2-1New-school Security Awareness Training is critical to enabling you and your IT staff to connect with users and help them make the right security decisions all of the time. This isn't a one and done deal, continuous training and simulated phishing are both needed to mobilize users as your last line of defense. Request your quote for KnowBe4's security awareness training and simulated phishing platform and find out how affordable this is!

Get A Quote Now

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

https://www.knowbe4.com/kmsat-security-awareness-training-quote



Subscribe to Our Blog


Comprehensive Anti-Phishing Guide




Get the latest about social engineering

Subscribe to CyberheistNews