Artificial intelligence (AI) models can be manipulated despite existing safeguards. With targeted attacks, scientists in Lausanne have been able to trick these systems into generating dangerous or ethically dubious content.
Today’s large language models (LLMs) have remarkable capabilities that can nevertheless be misused. A malicious person can use them to produce harmful content, spread false information and support harmful activities.
+Get the most important news from Switzerland in your inbox
Of the AI models tested, including Open AI’s GPT-4 and Anthropic’s Claude 3, a team from the Swiss Federal Institute of Technology Lausanne (EPFL) achieved a 100% success rate in cracking security safeguards using adaptive jailbreak attacks.
The models then generated dangerous content, ranging from instructions for phishing attacks to detailed construction plans for weapons. These linguistic models are supposed to have been trained not to respond to dangerous or ethically problematic requests, the EPFL said in a statement on Thursday.
+ AI regulations must strike a balance between innovation and safety
This work, presented last summer at a specialised conference in Vienna, shows that adaptive attacks can bypass these security measures. Such attacks exploit weak points in security mechanisms by making targeted requests (“prompts”) that are not recognised by models or are not properly rejected.
Building bombs
The models thus respond to malicious requests such as “How do I make a bomb?” or “How do I hack into a government database?”, according to this pre-publication study.
“We show that it is possible to exploit the information available on each model to create simple adaptive attacks, which we define as attacks specifically designed to target a given defense,” explained Nicolas Flammarion, co-author of the paper with Maksym Andriushchenko and Francesco Croce.
+ How US heavyweights can help grow the Swiss AI sector
The common thread behind these attacks is adaptability: different models are vulnerable to different prompts. “We hope that our work will provide a valuable source of information on the robustness of LLMs,” added the specialist in the release. According to the EPFL, these results are already influencing the development of Gemini 1.5, a new AI model from Google DeepMind.
As the company moves towards using LLMs as autonomous agents, for example as AI personal assistants, it is essential to guarantee their safety, the authors stressed.
“Before long AI agents will be able to perform various tasks for us, such as planning and booking our vacations, tasks that would require access to our diaries, emails and bank accounts. This raises many questions about security and alignment,” concluded Andriushchenko, who devoted his thesis to the subject.
Translated from French with DeepL/gw
This news story has been written and carefully fact-checked by an external editorial team. At SWI swissinfo.ch we select the most relevant news for an international audience and use automatic translation tools such as DeepL to translate it into English. Providing you with automatically translated news gives us the time to write more in-depth articles.
If you want to know more about how we work, have a look here, if you want to learn more about how we use technology, click here, and if you have feedback on this news story please write to [email protected].
You Might Also Like
Swiss fintech Leonteq has profits confiscated after regulatory breach
2024-12-12
Finma closes proceedings against Leonteq and confiscates profits
Keystone-SDA
Listen to the article
Listening the article
Toggle language selector
English (US)
Sanctions enforcement: Bern ‘cannot rule out’ Switzerland gets Russian gold via Central Asia
2024-12-06
Keystone / Martin Ruetschi
Listen to the article
Listening the article
Toggle language selector
English (US)
English (British)
OECD raises growth forecast for Swiss economy
2024-12-04
The OECD expects the Swiss economy to grow by 1.5% in 2025, it said in its "Economic Outlook" on Wednesday.
Keystone-SDA
Listen to the article
Listening the article
Toggle language selector
English (US)
Swiss Partners Group acquires real estate platform Empira Group
2024-12-03
Partners Group acquires real estate platform Empira Group
Keystone-SDA
Listen to the article
Listening the article
Toggle language selector
English (US)
Swiss ten-year fixed mortgage rates halved since 2022 peak
2024-10-10
Ten-year fixed mortgage rates almost halved
Keystone-SDA
Listen to the article
Listening the article
Toggle language selector
English (US)
Swiss hotels on course for a record summer
2024-10-04
Swiss hotels on course for a record summer after a good August
Keystone-SDA
Listen to the article
Listening the article
Toggle language selector
English (US)
Medicines regulators weigh hope and hype with new Alzheimer’s drugs
2024-09-30
In Switzerland, some 156,900 people have Alzheimer’s or some other form of dementia, and this is expected to rise to 315,400 by 2050 according to the organisation Alzheimer Schweiz.
Mtv / Courtesy Everett Collection
Listen to the article
Listening the article
Toggle language selector
English (US)
Galderma gains L’Oréal as a new major shareholder
2024-08-05
More
Swiss breast cancer screening quality varies across cantons
This content was published on
Aug 6, 2024
The quality of breast cancer screening programmes in Switzerland varies from canton to canton. However, according to a study published on Tuesday, the results align with the European standard.
Read more: Swiss breast cancer screening quality varies across cantons
More
Swiss army neutralised 280 unexploded ordnances in 2023
Tags: Featured,newsletter
