captainkangaroo@discuss.tchncs.de to Technology@lemmy.worldEnglish · 2 months agoHacker plants false memories in ChatGPT to steal user data in perpetuityarstechnica.comexternal-linkmessage-square18fedilinkarrow-up1380arrow-down14cross-posted to: [email protected][email protected]
arrow-up1376arrow-down1external-linkHacker plants false memories in ChatGPT to steal user data in perpetuityarstechnica.comcaptainkangaroo@discuss.tchncs.de to Technology@lemmy.worldEnglish · 2 months agomessage-square18fedilinkcross-posted to: [email protected][email protected]
minus-squarejaybone@lemmy.worldlinkfedilinkEnglisharrow-up24·2 months agoHow is the application able to send data to any website? Like even if you as the legit user explicitly asked it to do that?
minus-squarefmstrat@lemmy.nowsci.comlinkfedilinkEnglisharrow-up25·edit-22 months agoHaven’t read details, but the classic way is to have a system visit: site.com/badimage.gif?data=abcd Note: That s is also how things like email open rates are tracked, and how marketers grab info using JavaScript to craft image URLs.
minus-squarejaybone@lemmy.worldlinkfedilinkEnglisharrow-up18·2 months agoThis is why every single email client for the past 2+ decades blocks external images? This didn’t occur to the AI geniuses?
minus-squareEager Eagle@lemmy.worldlinkfedilinkEnglisharrow-up11·2 months agoIME they usually proxy and/or prefetch images for caching instead of blocking them. Only spam content is blocked by default.
minus-squarefmstrat@lemmy.nowsci.comlinkfedilinkEnglisharrow-up6·2 months agoThis wouldn’t help, would it? How would you prefetch and cache: site.com/base64u-to-niceware-word-array/image.gif ? It would look like a normal image URL in any article, but actually represent data. Note: “niceware” is a way to convert binary or text data into a set of words like “cow-heart-running-something-etc”.
How is the application able to send data to any website? Like even if you as the legit user explicitly asked it to do that?
Haven’t read details, but the classic way is to have a system visit: site.com/badimage.gif?data=abcd
Note: That s is also how things like email open rates are tracked, and how marketers grab info using JavaScript to craft image URLs.
This is why every single email client for the past 2+ decades blocks external images? This didn’t occur to the AI geniuses?
IME they usually proxy and/or prefetch images for caching instead of blocking them. Only spam content is blocked by default.
This wouldn’t help, would it? How would you prefetch and cache:
site.com/base64u-to-niceware-word-array/image.gif
? It would look like a normal image URL in any article, but actually represent data.
Note: “niceware” is a way to convert binary or text data into a set of words like “cow-heart-running-something-etc”.