LLM Security in the cloud- Over privileged agent with a permissive tool box
Вставка
- Опубліковано 15 вер 2024
- LLM Agent Deployment to the cloud gone wrong: A GenAI Exploit Demo
🚨
Demonstrating risks of rapid cloud deployment.
Focus on an over-privileged GenAI agent with Compute Engine Service Account & LangChain Shell Tool.
Potential for crypto mining & DDOS attacks exploitation.
🛡 In This Video
Setup: Brief on the risky cloud setup.
Exploit: How vulnerabilities can lead to attacks.
Prevention: Tips to secure your deployments.
🔑 Key Takeaways:
Principal of least privileges- Custom Role for service account
RBAC enforcment
Don't use insecure tool, and if you do- Don't use as is, override them with
safety controls
This is an excellent video about a critical aspect of security. Thank you for sharing.