AI functions in our apps that allow for user prompts also have the potential to open our model to external instructions from bad actors.

Telerik's platform is  dedicated to providing insights and resources for developers and teams building web and mobile applications with UI components and developer tools. Through documentation, tutorials, and demos, Telerik offers insights into building modern and responsive user interfaces. Developers can learn about Telerik UI components, developer productivity tools, and app development frameworks to accelerate application development and deliver exceptional user experiences.

Telerik

When apps expose AI models to user prompts, they also open the door to security attacks. Three main threat vectors are covered: reverse prompt engineering (tricking the model into revealing its system prompt), confidential data extraction (getting the model to regurgitate training data or RAG-accessible content), and jailbreaking (bypassing safety guardrails to produce harmful or unintended outputs). Real-world examples include the viral Chevrolet chatbot exploit and a 2023 research paper demonstrating gigabytes of extractable training data from production LLMs. Legal liability for AI chatbot outputs is also emerging, as shown by the 2024 Air Canada ruling.

AI Crash Course: Jailbreaking, Prompt Extraction, Bad Actors