Cyber Security News

PyRIT : Automated AI Toolkit For Security Professionals

A new Python automation framework has been released for risk identification in generative AI.

This new framework has been named “PyRIT,” and it can help security professionals and machine learning engineers find risks in their generative AI systems.

Microsoft stated that they had been proactively red-teaming high-value generative AI systems and models, which proved to be different from red-teaming classical AI systems or traditional software.

Three Prominent Advantages

According to the reports shared, three main reasons prove that red-teaming generative AI systems are highly complex when compared to other classical AI systems or traditional software.

  1. Probing both Security and responsible AI risks simultaneously.
  2. Generative AI is more Probabilistic than traditional red-teaming.
  3. Generative AI systems architecture varies widely.

Probing Both Security And Responsible AI Risks Simultaneously

During read teaming, Traditional software mainly focuses on identifying security failures, while generative AI systems focus on security risks as well as responsible AI risks simultaneously.

Document
Live Account Takeover Attack Simulation

How do Hackers Bypass 2FA?

Live attack simulation Webinar demonstrates various ways in which account takeover can happen and practices to protect your websites and APIs against ATO attacks .

This can vary widely, ranging from generating fair issue content to ungrounded or inaccurate content.

Source: Microsoft

Generative AI Is More Probabilistic Than Traditional Red Teaming

In traditional software red teaming, using the same attack multiple times will most likely get the same result.

Whereas in generative AI systems, the same input can yield different outputs due to the fact that generative AI models can engage in different extensibility plugins.

Traditional software systems will have well-defined APIs and parameters that can be examined using tools when doing a red teaming.

However, generative AI systems will require a strategy that must consider the probabilistic nature of the underlying elements.

Generative AI Systems Architecture Varies Widely

From standalone applications to integrations in existing applications, the architecture of these generative AI systems varies widely.

This also includes the input and output modalities such as text, audio, images, and videos.

These reasons conclude that when it comes to red teaming generative AI systems, finding just one type of rusk in one modality of the application requires different strategies multiple times that could gather evidence of potential failures.

Moreover, doing this in all the modalities with different strategies can be time consuming and slow which requires automation help.

Microsoft stated that the PyRIT is battle-tested with several features added over time.

PyRIT is more than a prompt generation tool; it changes its tactics based on the response from the generative AI system and generates the next input to the generative AI system” reads the Microsoft post on PyRIT.

Components Of PyRIT

Five major components in PyRIT help extend and adapt its capabilities. They are

  • Targets: Supports a variety of generative AI target formulations.
  • Datasets: Used for encoding the input to be probed that could either be a static set of malicious prompts or a dynamic prompt template.
  • Extensible scoring engine: Offers two options for scoring the outputs: a classical machine learning classifier and an LLM endpoint for self-evaluation.
  • Extensible Attack Strategy: Supports two styles of attack strategy; sending a combination of jailbreaks and harmful prompts and score them which is called the single-turn and the multiturn strategy which additionally provides a response to the AI system based on the score.
  • Memory: Provides the ability to share the conversations explored by the PyRIT agent and the capability for in-depth analysis
Source: Microsoft

You can block malware, including Trojans, ransomware, spyware, rootkits, worms, and zero-day exploits, with Perimeter81 malware protection. All are extremely harmful, can wreak havoc, and damage your network.

Stay updated on Cybersecurity news, Whitepapers, and Infographics. Follow us on LinkedIn & Twitter.
Eswar

Eswar is a Cyber security reporter with a passion for creating captivating and informative content. With years of experience under his belt in Cyber Security, he is reporting data breach, Privacy and APT Threats.

Share
Published by
Eswar
Tags: cyber securityGenerative AIRisk Assessment
2 years ago

Recent Posts

China-linked APT24 Hackers New BadAudio Compromised Legitimate Public Websites to Attack Users

APT24, a sophisticated cyber espionage group linked to China's People's Republic, has launched a relentless…

40 minutes ago

Broadcom Allegedly Breached by Clop Ransomware via E-Business Suite 0-Day Hack

The Cl0p ransomware group has claimed responsibility for infiltrating Broadcom's internal systems as part of…

1 hour ago

Critical Grafana Vulnerability Let Attackers Escalate Privilege

Grafana Labs has disclosed a critical security vulnerability affecting Grafana Enterprise that could allow attackers…

1 hour ago

Critical ASUSTOR Vulnerability Let Attackers Execute Malicious Code with Elevated Privileges

A critical security vulnerability has been discovered in ASUSTOR backup and synchronization software, allowing attackers…

2 hours ago

Windows 11 to Hide BSOD Crash Errors on Public Displays

Microsoft has introduced a practical new feature in Windows 11 designed specifically for public-facing monitors…

3 hours ago

SonicOS SSLVPN Vulnerability Let Attackers Crash the Firewall Remotely

SonicWall has disclosed a critical stack-based buffer overflow vulnerability in its SonicOS SSLVPN service. That…

6 hours ago