Palo Alto Networks Unit 42 demonstrates indirect prompt injection in AI agents

Director at Unit 42, Palo Alto Networks Threat Intelligence & Security Consulting

Palo Alto Networks Unit 42 presents a proof of concept on indirect prompt injection in AI agents. This method can store malicious instructions in an agent's memory, affecting future interactions.

When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory unit42.paloaltonetworks.com

To view or add a comment, sign in

More Relevant Posts

Nicholas Jones

Being the cybersecurity partner of choice, protecting our digital way of life.
1w
Report this post
Unit 42 presents a proof of concept on indirect prompt injection in AI agents. This method can store malicious instructions in an agent's memory, affecting future interactions.

When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory unit42.paloaltonetworks.com
Like Comment
To view or add a comment, sign in
Patrick Bayle, CISSP, CISM
5d
Report this post
Unit 42 presents a proof of concept on indirect prompt injection in AI agents. This method can store malicious instructions in an agent's memory, affecting future interactions.

When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory unit42.paloaltonetworks.com
Like Comment
To view or add a comment, sign in
Jim Beasley

Strategic Account Manager at Palo Alto Networks
1w
Report this post
Memory manipulation attacks in LLMs: AI agents, when memory is enabled, can be a vector for persistent malicious instructions. Risks extend to all unverified input channels ranging from documents to user-generated content. Developers should treat all untrusted input as potentially adversarial. Read the full article:

When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory unit42.paloaltonetworks.com
Like Comment
To view or add a comment, sign in
Lance Masten

Cloud Security Specialist- Palo Alto Networks
1w
Report this post
Memory manipulation attacks in LLMs: AI agents, when memory is enabled, can be a vector for persistent malicious instructions. Risks extend to all unverified input channels ranging from documents to user-generated content. Developers should treat all untrusted input as potentially adversarial. Read the full article:

When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory unit42.paloaltonetworks.com
Like Comment
To view or add a comment, sign in
Ignacio Garcia Naranjo

Lead SASE Architect @ Palo Alto Networks | Security
1w
Report this post
Memory manipulation attacks in LLMs: AI agents, when memory is enabled, can be a vector for persistent malicious instructions. Risks extend to all unverified input channels ranging from documents to user-generated content. Developers should treat all untrusted input as potentially adversarial. Read the full article:

When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory unit42.paloaltonetworks.com
Like Comment
To view or add a comment, sign in
Jesus T. Luevano

Helping keep your data safe in the cloud
1w
Report this post
Memory manipulation attacks in LLMs: AI agents, when memory is enabled, can be a vector for persistent malicious instructions. Risks extend to all unverified input channels ranging from documents to user-generated content. Developers should treat all untrusted input as potentially adversarial. Read the full article:

When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory unit42.paloaltonetworks.com

1 Comment
Like Comment
To view or add a comment, sign in
Charles Moody
1w
Report this post
Memory manipulation attacks in LLMs: AI agents, when memory is enabled, can be a vector for persistent malicious instructions. Risks extend to all unverified input channels ranging from documents to user-generated content. Developers should treat all untrusted input as potentially adversarial. Read the full article:

When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory unit42.paloaltonetworks.com
Like Comment
To view or add a comment, sign in
Seemal Haroon

Cybersecurity Consultant at Palo Alto Networks | Ex-Dell | LUMS
6d
Report this post
Memory manipulation attacks in LLMs: AI agents, when memory is enabled, can be a vector for persistent malicious instructions. Risks extend to all unverified input channels ranging from documents to user-generated content. Developers should treat all untrusted input as potentially adversarial. Read the full article:

When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory unit42.paloaltonetworks.com
Like Comment
To view or add a comment, sign in
Pablo Barriga

Presales Engineer at Palo Alto Networks | Digital Strategist | Cybersecurity Presales |
3d
Report this post
Memory manipulation attacks in LLMs: AI agents, when memory is enabled, can be a vector for persistent malicious instructions. Risks extend to all unverified input channels ranging from documents to user-generated content. Developers should treat all untrusted input as potentially adversarial. Read the full article:

When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory unit42.paloaltonetworks.com
Like Comment
To view or add a comment, sign in

7,330 followers

629 Posts

View Profile Follow

LinkedIn respects your privacy

Palo Alto Networks Unit 42 demonstrates indirect prompt injection in AI agents

Explore content categories