The final guidelines for protecting artificial intelligence systems from cyberattacks have been released by the National Institute of Standards and Technology ( NIST ), highlighting the emerging threats aimed at both predictive ( PredAI ) and generative ( GenAI ) models.  ,
In addition to the important components of AI systems, their life cycle stages, and the tactics used by attackers based on their knowledge, exposure, and purpose, NIST’s released on March 24 introduces updated attack classifications and prevention strategies that address their essential components, their life cycle stages.  ,
Beyond the dangers that traditional software systems face, NIST stated in its report,” ML systems ‘ statistical, data-based nature opens up new potential vectors for attacks against these systems ‘ security, privacy, and safety.” Such problems have been demonstrated in real-world settings, and they have increased in style and impact.
In contrast to NIST’s original review in 2024, the final version makes distinctions between PredAI and GenAI. GenAI is vulnerable to enable injection attacks and unauthorized access to jailbreak, while PredAI threats are classified according to the attacker’s goals and abilities.  ,
According to the report, hackers who target GenAI frequently smuggle malignant instructions into the user’s behavior out of a lack of separation between data and communication channels.  ,
These rapid injection attacks take the form of immediate attacks, where malicious instructions are input by hackers to override legitimate instructions, and indirect attacks, where malicious external data sources are used to manipulate the model.  ,
PredAI models are also vulnerable to dodging attacks, data poison, and privacy breaches, among another attack types. According to NIST, the AI woman’s life stage frequently determines the timing and technique of these attacks.  ,
The report lists possible defenses for AI systems, including dark partnering, data cleaning, input validation, output monitoring, and hostile training and safety-focused tuning.  ,  ,
The review also noted that “managing dangers in AI techniques is an area for continued work” as hackers use more advanced methods and new challenges arise.