EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Microsoft releases tool to test generative AI security  

    Microsoft releases tool to test generative AI security  

    Written by
    The Editorial Team
    03.08.24
    Risks management
    02
    MIN
    Microsoft releases tool to test generative AI security  
    Microsoft releases tool to test generative AI security  
    Microsoft releases tool to test generative AI security  
    Image Child privacy and protection: finding the right balance in the fight against dangerous sexual content
    Risks management
    04.09.24 Risks management
    Next article
    Child privacy and protection: finding the right balance in the fight against dangerous sexual content
    Read
    04
    MIN
    Image Artificial Intelligence: What are the 5 major cyber threats for 2024?
    Risks management
    03.20.24 Risks management
    Next article
    Artificial Intelligence: What are the 5 major cyber threats for 2024?
    Read
    03
    MIN
    Image Jean-Jacques Latour: "To date, we have not identified any new threat linked to artificial intelligence"
    Risks management
    03.18.24 Risks management
    Next article
    Jean-Jacques Latour: “To date, we have not identified any new threat linked to artificial intelligence”
    Read
    06
    MIN
    Image Storage must form the core of an enterprise cybersecurity strategy
    Risks management
    03.14.24 Risks management
    Next article
    Storage must form the core of an enterprise cybersecurity strategy
    Read
    05
    MIN

    Microsoft teams have been using PyRIT internally for a few months.

    On February 22, 2024, Microsoft published a risk detection tool for generative AI, named Python Risk Identification Toolkit for generative AI (PyRIT). Microsoft’s AI Red Teams have been using it internally for several months, including on Copilot, the Redmond-based firm’s chatbot. 

    In a year, Microsoft researchers tested more than 60 generative AI systems, putting themselves in the shoes of cybercriminals. The company noted significant differences in attack strategies, compared to traditional software and AI. First off, generative AI combines the cyber risks inherent to any computer system and risks that are specific to the new tech, such as the potential development of malicious content and disinformation. 

    Moreover, the architecture of AI systems varies considerably from one model to another. Microsoft finally points out that the same request can generate different results according to the model, but also the context. The last two issues make it significantly more complicated to standardize security tests, requiring a heavy workload to reach reliable results.

    This observation led to the creation of the PyRIT, which makes it possible to automate as many tasks as possible, and thus keep the most sensitive tasks for human teams. In particular, Microsoft’s tool can send malicious prompts to a generative AI model, and assess the response according to a scoring system. PyRIT is then able to generate a new test prompt, based on the score.

    For instance, in one of our red teaming exercises on a Copilot system, we were able to pick a harm category, generate several thousand malicious prompts, and use PyRIT’s scoring engine to evaluate the output from the Copilot system all in the matter of hours instead of weeks,” reads the Microsoft press release.

    The Editorial Team
    03.08.24
    Articles by the same author:
    1
    04.08.24 Cybercrime
    AT&T data theft: 73 million accounts compromised
    Read
    01
    MIN
    2
    04.08.24 Industry and OT
    Kaspersky notes slight decrease in attacks against ICS 
    Read
    02
    MIN
    3
    04.05.24 Digital Sovereignty
    DMA: European Commission to investigate Alphabet, Apple and Meta 
    Read
    02
    MIN
    4
    04.02.24 Digital Sovereignty
    Atos/Eviden: Airbus throws in the towel (again)
    Read
    02
    MIN
    Image Child privacy and protection: finding the right balance in the fight against dangerous sexual content
    Risks management
    04.09.24 Risks management
    Next article
    Child privacy and protection: finding the right balance in the fight against dangerous sexual content
    Read
    04
    MIN
    Image Artificial Intelligence: What are the 5 major cyber threats for 2024?
    Risks management
    03.20.24 Risks management
    Next article
    Artificial Intelligence: What are the 5 major cyber threats for 2024?
    Read
    03
    MIN
    Image Jean-Jacques Latour: "To date, we have not identified any new threat linked to artificial intelligence"
    Risks management
    03.18.24 Risks management
    Next article
    Jean-Jacques Latour: “To date, we have not identified any new threat linked to artificial intelligence”
    Read
    06
    MIN
    Image Storage must form the core of an enterprise cybersecurity strategy
    Risks management
    03.14.24 Risks management
    Next article
    Storage must form the core of an enterprise cybersecurity strategy
    Read
    05
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.