当前位置:首页 > 报告详情

当攻击者介入时:利用LLM微调实现隐蔽C2攻击.pdf

上传人: 可*** 编号:991839 2025-12-07 22页 2.15MB

1、WEAPONIZING LLM FINE-TUNING FOR STEALTHY C2 When Attackers Tune InIntroductionBar MatalonThreat Intelligence Team LeadPalo Alto Networks(Cortex)Noa DekelSenior Threat Intelligence ResearcherPalo Alto Networks(Cortex)Is your trusted assistantalso your worst enemy?Is my cat gaslighting me or just hung

2、ry?Explain this CVE like I only have 10 seconds to understandIs it legal if the AI does the hacking?Key PointsThe Growing Threat of LLM AbuseThe Fine Tuning Attack VectorChallenges in Using LLMs for C2Demo of C2LLM in ActionDetection and Defense Strategieshttps:/ Abuse in the WildResearch&Reconnaiss

3、anceSocial EngineeringCodingCommand&Controlhttps:/ GuardrailsInconsistent AnswersIf you cant beat them-tune them!LLM as C2-Not That Easy+Pre-trained ModelTraining DataFine-tuned ModelLLM Fine-TuningImplant gathers victims dataPrepares tuning data set with dataTrains model with dataset via APIAttacke

4、r uses the same API keyPrompts the fine-tuned modelGets victims dataunique_victim_model_nameFine-Tuning Attack-First StepsAnd Then We Tried AgainProblem 1:AI HallucinationsAI Hallucinations Models generate incorrect or fabricatedinformation,presenting it as factCauses Training data noise Lack of con

5、text High temperatureSolution Cool it down!Instead of avoiding model overfitting,strive for itProblem 2:Breaking The Models TrainingProblem The model tends to rely on its previous training when given logical variant namesSolution“Weird”variables Non-contextualized prompts Higher learning rateZ_q!wha

6、t?Z_q!Heres what we know about the victim:Problem 3:Time EfficiencyProblem Fine-tuning a model takes a couple of minutes and tokens per directionSolution Using additional features like model description to relay commandsC2LLM in Action:Part 1-Reconand ExecutionC2LLM-Data Exfiltra

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据报告的内容,全文主要内容概括如下: - **LLM滥用威胁增长**:人工智能语言模型(LLM)被用于恶意目的,如C2(命令与控制)操作。 - **微调攻击向量**:攻击者通过微调LLM模型来获取受害者数据。 - **挑战**:微调过程中可能出现幻觉、模型训练问题和时间效率问题。 - **C2LLM行动**:展示如何使用LLM进行侦察和数据泄露。 - **防御策略**:检测和防御LLM武器化,包括异常检测和内容审查。 - **LLM滥用实例**:提及了PromptLock勒索软件和APT28的C2LLM活动。 - **关键点**: - LLM微调攻击可能导致AI幻觉。 - 需要使用“奇怪”变量和非上下文提示来避免模型依赖。 - LLM数据泄露挑战包括数据编码和分块。 - LLM作为C2的优点包括隐蔽性和大规模数据传输能力。 - 需要关注LLM滥用,并采取防御措施。
揭秘黑科技!" LLM调优攻防战!" LLM如何被滥用?"
客服
商务合作
小程序
服务号
折叠