Is Our Own Microsoft Copilot Chatbot Not Safe?

General news News Tech Tech News
0 325 Views
TECH NEWS - Microsoft is working on a new AI feature that will improve games running on PCs based on a recently discovered Windows 11 test build.

TECH NEWS – Security experts say it’s easy to build your own chatbot, but don’t ignore its security flaws…

 

Microsoft’s chatbot could, for example, allow a game developer to answer questions about his game, help with graphics tuning for PC ports, and even provide a cure for technical problems. On the surface, that’s good, but Zenity, an AI security specialist, says Copilot Studio and the chatbots it creates are a security nightmare. The company’s CTO, Michael Bargury, dug into the details at the Black Hat security conference…

Copilot Studio’s default security settings are unenforceable. A malicious user can place malicious code in an innocent email, tell the Copilot bot to scan it, and poof, the code runs. Or Copilot could serve up a fake Microsoft login page that could steal credentials in seconds, all visible to the chatbot. According to Zenity, the average large US company already runs 3,000 such chatbots, and 63% of them can be detected online. If that’s true, then 2,000 bots in a Fortune 500 company could be capable of leaking critical, secret data!

“We scanned the Internet and found tens of thousands of these bots. There’s a fundamental problem here. When you give AI access to data, that data is now an attack surface for rapid injection,” Bargury said. According to him, Copilot’s original default settings exposed the bots to the Internet and could be accessed without authentication. Zenity has raised this with Microsoft, but the bots are still there before the update…

This was Microsoft’s response: “We appreciate the work of Michael Bargury in identifying and responsibly reporting these techniques through a coordinated disclosure. We are investigating these reports and continually enhancing our systems to proactively detect and mitigate these types of threats and help protect our customers. Similar to other post-compromise techniques, these methods require prior compromise of a system or social engineering. Microsoft Security provides a robust set of protections that customers can use to address these risks, and we’re committed to continuing to improve our defenses as this technology evolves.

Artificial intelligence can be a minefield.

Source: PCGamer, The Register, TechTarget

Spread the love
Tagged
Avatar photo
Anikó, our news editor and communication manager, is more interested in the business side of the gaming industry. She worked at banks, and she has a vast knowledge of business life. Still, she likes puzzle and story-oriented games, like Sherlock Holmes: Crimes & Punishments, which is her favourite title. She also played The Sims 3, but after accidentally killing a whole sim family, swore not to play it again. (For our office address, email and phone number check out our IMPRESSUM)

Related Articles

Dreamhaven: Blizzard Co-Founder Set to Announce a New Game!

Sep 19, 2024 30 Views
Free access periods are also planned for Battlefield 2042 on all platforms in December.

Not Just One Studio Working on Battlefield—So, How Many Are Involved? [VIDEO]

Sep 19, 2024 37 Views
The Palworld, a newly released video game, immediately stirred up significant controversy within the Steam community due to accusations of digital human trafficking.

Nintendo Files Lawsuit Against Palworld Developers!

Sep 19, 2024 35 Views
The first information suggests that the old style and atmosphere will be the goal of the return of Double Dragon in 3D, but at the moment we don't know the name of the game.

Double Dragon Revive: A Strong Revival by Yuke’s and ArcSys! [VIDEO]

Sep 19, 2024 47 Views
MOVIE NEWS - After the positive critical reception of the new Batman movie, it's no surprise that many are already looking forward to the sequel. Batman 2.

Batman Fans Are Outraged: Why Did They Have to Change the Name of this Character?!

Sep 19, 2024 85 Views
Larian CEO and founder Swen Vincke thinks he's cracked the first act of his next game... Baldur's Gate 3

The Father of Baldur’s Gate 3 Might Make a New Game in Another Classic Fantasy RPG Saga?!

Sep 19, 2024 90 Views
If you ever feel bad, thinking that you're unnecessary, then consider that Sony has remastered the beautiful Horizon Zero Dawn, which is already running at 60 fps on the PS5...

Horizon Zero Dawn Could Return to PC and PS5 in a Very Special Way – Here Are the Details!

Sep 19, 2024 105 Views
FSLabs tried to smuggle malware onto the computers of hundreds of players; they fell down, and instead of apologising, they threatened everyone…

Do You Remember the FSLabs Scandal? An Embarrassing Issue We Still Haven’t Gotten an Apology for!

Sep 19, 2024 93 Views
More details surfaced from the Official PlayStation Magazine UK - which is still something, as Sucker Punch doesn't say much about Ghost of Tsushima otherwise. Chad Stahelski. Tsushima 2

Ghost of Tsushima 2 Could Be in the Making – But Why Are Fans Divided?!

Sep 19, 2024 98 Views
MOVIE NEWS - SkyShowtime announced its launch in Central and Eastern Europe at an exclusive event in Amsterdam. The pan-European streaming provider will be available in even more European countries.

SkyShowtime Announces New Exclusive Series, Films and Original Works

Sep 18, 2024 46 Views

No comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Hot News

Copyright © 2014 GameCorner. Ltd. Impressum Data Protection Statement