I work in infosec and we are treating GPT&friends as a catalyst for more sophist... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

alphager on March 20, 2023 | parent | context | favorite | on: Anti-recruiter prompt injection attack in LinkedIn...

I work in infosec and we are treating GPT&friends as a catalyst for more sophisticated automated social engineering attacks. We are expecting to see automated spear phishing campaigns and especially attacks against our chat and email based customer support channels (automate asking for refunds, discounts or freebies, fire it at the support channels until a support worker slips up). Or just plain DoS by inundating them with real sounding but fake communication.

pixl97 on March 20, 2023 [–]

I'm just thinking how powerful a XSS that launches a GPT chat injected into a major companies website would be. Think any service that allows bill pay, and or does customer service online.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact