More
CALL to Community
To Know
-
Features and Updates
Keep an eye out
CALL to Community
—
Oct 2024
Recently, a vulnerability was discovered in OpenAI's ChatGPT that exploited its long-term conversation memory feature. This feature, which stores information from previous conversations to provide context in future interactions, was found to be susceptible to indirect prompt injection. Researcher Rehberger demonstrated that malicious actors could manipulate ChatGPT into storing false information, such as a user’s age or beliefs, by embedding instructions in untrusted content like emails or documents. This could lead to the AI incorporating these false details into all future conversations.
This vulnerability was reported to OpenAI in May, with a proof of concept showing how the ChatGPT macOS app could be exploited to send user data to an attacker’s server. Source here.
Here at Celfocus, we require users to follow the best practices whenever using Artificial Intelligence software such as ChatGPT and Microsoft Copilot, by not sharing any confidential information into prompts.
Update refers to making something more modern or suitable for use at the present, by adding new information or changing its design.
Just as you need to eventually change (or update) your car’s tires to ensure your safety on the road, so too must you update your devices to prevent any vulnerabilities to be exploited by malicious actors. These updates are usually automatically done, however there are some that most likely aren’t and still need to be done.
Consider the following checklist of common updates that you can figure out if can be done on your device:
With this challenge, you will test your knowledge and try to figure out if a text message you receive is a scam attempt or legitimate.
With this challenge, you have to identify what makes an email suspicious and decide whether to report it or trust it.
We have a dedicated Security team that works diligently to ensure the protection of our systems, data, and the overall cybersecurity posture of the organization.
Should you have any questions, concerns, or need assistance regarding security matters, our team is here to help. Please find below the contact information for our Information Security team:
Email: information.security@celfocus.com
Recently, a vulnerability was discovered in OpenAI's ChatGPT that exploited its long-term conversation memory feature. This feature, which stores information from previous conversations to provide context in future interactions, was found to be susceptible to indirect prompt injection. Researcher Rehberger demonstrated that malicious actors could manipulate ChatGPT into storing false information, such as a user’s age or beliefs, by embedding instructions in untrusted content like emails or documents. This could lead to the AI incorporating these false details into all future conversations.
This vulnerability was reported to OpenAI in May, with a proof of concept showing how the ChatGPT macOS app could be exploited to send user data to an attacker’s server. Source here.
Here at Celfocus, we require users to follow the best practices whenever using Artificial Intelligence software such as ChatGPT and Microsoft Copilot, by not sharing any confidential information into prompts.
Update refers to making something more modern or suitable for use at the present, by adding new information or changing its design.
Just as you need to eventually change (or update) your car’s tires to ensure your safety on the road, so too must you update your devices to prevent any vulnerabilities to be exploited by malicious actors. These updates are usually automatically done, however there are some that most likely aren’t and still need to be done.
Consider the following checklist of common updates that you can figure out if can be done on your device:
With this challenge, you will test your knowledge and try to figure out if a text message you receive is a scam attempt or legitimate.
With this challenge, you have to identify what makes an email suspicious and decide whether to report it or trust it.
We have a dedicated Security team that works diligently to ensure the protection of our systems, data, and the overall cybersecurity posture of the organization.
Should you have any questions, concerns, or need assistance regarding security matters, our team is here to help. Please find below the contact information for our Information Security team:
Email: information.security@celfocus.com
Recently, a vulnerability was discovered in OpenAI's ChatGPT that exploited its long-term conversation memory feature. This feature, which stores information from previous conversations to provide context in future interactions, was found to be susceptible to indirect prompt injection. Researcher Rehberger demonstrated that malicious actors could manipulate ChatGPT into storing false information, such as a user’s age or beliefs, by embedding instructions in untrusted content like emails or documents. This could lead to the AI incorporating these false details into all future conversations.
This vulnerability was reported to OpenAI in May, with a proof of concept showing how the ChatGPT macOS app could be exploited to send user data to an attacker’s server. Source here.
Here at Celfocus, we require users to follow the best practices whenever using Artificial Intelligence software such as ChatGPT and Microsoft Copilot, by not sharing any confidential information into prompts.
Update refers to making something more modern or suitable for use at the present, by adding new information or changing its design.
Just as you need to eventually change (or update) your car’s tires to ensure your safety on the road, so too must you update your devices to prevent any vulnerabilities to be exploited by malicious actors. These updates are usually automatically done, however there are some that most likely aren’t and still need to be done.
Consider the following checklist of common updates that you can figure out if can be done on your device:
With this challenge, you will test your knowledge and try to figure out if a text message you receive is a scam attempt or legitimate.
With this challenge, you have to identify what makes an email suspicious and decide whether to report it or trust it.
We have a dedicated Security team that works diligently to ensure the protection of our systems, data, and the overall cybersecurity posture of the organization.
Should you have any questions, concerns, or need assistance regarding security matters, our team is here to help. Please find below the contact information for our Information Security team:
Email: information.security@celfocus.com
.png)
