Sign up to save your podcasts
Or
Share Can Hackers Hijack Your Chatbot? How RAG Systems and Other API Endpoints Can Create Data Portals for Cyber Intruders with Keith Hoodlet of Trail of Bits
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Can Hackers Hijack Your Chatbot? How RAG Systems and Other API Endpoints Can Create Data Portals for Cyber Intruders with Keith Hoodlet of Trail of Bits
Can a misconfigured prompt spark a massive data breach?
On this episode of Your AI Injection, host Deep Dhillon and Keith Hoodlet, Director of AI/ML and Application Security from Trail of Bits reveal the critical vulnerabilities hiding in your AI chat systems. Keith explains how RAG systems and other API endpoints, if not rigorously secured, can create unintended data portals, allowing hackers to extract everything from HR records to confidential strategic documents. The two navigate the complexities of prompt injection vulnerabilities, dynamic adversarial testing, and the balancing act between rapid innovation and robust security. As they discuss the human and technical factors that contribute to these risks, Deep and Keith challenge the industry to view security not as an afterthought, but as an integral feature of every AI-driven product. Tune in for a deep dive into safeguarding your digital future!
Learn more about Keith here: https://www.linkedin.com/in/securingdev/
and Trail of Bits here: https://www.trailofbits.com/
Check out some of our related podcast episodes:
- Your Code Base Is Already Gen AI—Now What? with Matt Van Itallie of Sema
- Why Generative AI Could Make Programming Languages Obsolete with Austin Vance of Focused
- Exploring Artificial General Intelligence: Intent, Intellect, and Innovation with Lucas Hendrich of the Forte Group
View all episodes
By Deep
5
1616 ratings
Can a misconfigured prompt spark a massive data breach?
On this episode of Your AI Injection, host Deep Dhillon and Keith Hoodlet, Director of AI/ML and Application Security from Trail of Bits reveal the critical vulnerabilities hiding in your AI chat systems. Keith explains how RAG systems and other API endpoints, if not rigorously secured, can create unintended data portals, allowing hackers to extract everything from HR records to confidential strategic documents. The two navigate the complexities of prompt injection vulnerabilities, dynamic adversarial testing, and the balancing act between rapid innovation and robust security. As they discuss the human and technical factors that contribute to these risks, Deep and Keith challenge the industry to view security not as an afterthought, but as an integral feature of every AI-driven product. Tune in for a deep dive into safeguarding your digital future!
Learn more about Keith here: https://www.linkedin.com/in/securingdev/
and Trail of Bits here: https://www.trailofbits.com/
Check out some of our related podcast episodes:
- Your Code Base Is Already Gen AI—Now What? with Matt Van Itallie of Sema
- Why Generative AI Could Make Programming Languages Obsolete with Austin Vance of Focused
- Exploring Artificial General Intelligence: Intent, Intellect, and Innovation with Lucas Hendrich of the Forte Group
More shows like Your AI Injection
View all
Up First from NPR
56,070 Listeners
Huberman Lab
28,399 Listeners
The AI Daily Brief (Formerly The AI Breakdown): Artificial Intelligence News and Analysis
419 Listeners