Data Security Risk

Record summary

A quick snapshot of what this page covers.

Techniques3Attack methods connected to this risk.

Mitigations3Defenses that may help with related attacks.

Domain4. Malicious Actors & MisuseThe broad risk area this belongs to.

Risk profile

How this risk is described and categorized.

"Just as every other type of individual and organization has explored possible use cases for generative AI products, so too have malicious actors. This could take the form of facilitating or scaling up existing threat methods, for example drafting actual malware code,87 business email compromise attempts,88 and phishing attempts.89 This could also take the form of new types of threat methods, for example mining information fed into the AI’s learning model dataset90 or poisoning the learning model data set with strategically bad data.91 We should also expect that there will be new attack vectors that we have not even conceived of yet made possible or made more broadly accessible by generative AI."

Domain4. Malicious Actors & Misuse

Subdomain4.3 > Fraud, scams, and targeted manipulation

Entity1 - Human

Intent1 - Intentional

Timing3 - Other

CategoryData Security Risk

Subcategoryn/a

Related techniques

Attack methods connected to this risk.

Suggested mitigations

Defenses that may help with related attacks.

Source

Research source for this risk, when available.

Included resource

Generating Harms: Generative AI's Impact & Paths Forward

AuthorsElectronic Privacy Information CentreYear2023TypeReport

URLhttps://epic.org/documents/generating-harms-generative-ais-impact-paths-forward/

Original source

MIT AI Risk Repository

Open the public repository used for AI risk records and taxonomy fields.

Repositoryhttps://airisk.mit.edu/