AIs Hacking Websites
New research:
LLM Agents can Autonomously Hack Websites
Abstract: In recent years, large language models (LLMs) have become increasingly capable and can now interact with tools (i.e., call functions), read documents, and recursively call themselves. As a result, these LLMs can now function autonomously as agents. With the rise in capabilities of these agents, recent work has speculated on how LLM agents would affect cybersecurity. However, not much is known about the offensive capabilities of LLM agents.
In this work, we show that LLM agents can autonomously hack websites, performing tasks as complex as blind database schema extraction and SQL injections without human feedback. Importantly, the agent does not need to know the vulnerability beforehand. This capability is uniquely enabled by frontier models that are highly capable of tool use and leveraging extended context. Namely, we show that GPT-4 is capable of such hacks, but existing open-source models are not. Finally, we show that GPT-4 is capable of autonomously finding vulnerabilities in websites in the wild. Our findings raise questions about the widespread deployment of LLMs.
Bob • February 23, 2024 11:47 AM
I actually gave a presentation recently where I pointed out that it is inevitable that AI will be used to carry out attacks that change by the nanosecond, and that’s going to be happening sooner than later.
We currently find ourselves in the early stages of a brand new arms race. The Genie’s not going back in the bottle. It’s a matter of time until there’s self-replicating rogue AI distributed across various pwned servers, PCs, routers, and refrigerators.
Legislators are ultimately going to do things that tie defenders’ hands while attackers operate unconstrained.
We already know that when it comes to the technical, government dinosaurs will move mountains to do things that make us less safe, so long as they get more control (or at least the feeling of such.)