Microsoft’s own baddie team ‘attacked’ more than 100 generative AI products: Here’s what they learnt

Microsoft created an AI red team back in 2018 as it foresaw the rise of AI
A red team represents the enemy; and adopts the adversarial persona.
Latest whitepaper from the team hopes to address common vulnerabilities in AI systems and LLMs

Over the past seven years, Microsoft has been addressing the risks in artificial intelligence systems through its dedicated AI ‘red team’.

Established to foresee and counter the growing challenges posed by advanced AI systems, this team adopts the role of threat actors, ultimately aiming to identify vulnerabilities before they can be exploited in the real world.

Now, after years of work, Microsoft has released a whitepaper from the team, showcasing some of its most important findings from its work.

Microsoft’s red team whitepaper findings

Over the years, the focus of Microsoft’s red teaming has expanded beyond traditional vulnerabilities to tackle novel risks unique to AI, working across Microsoft’s own Copilot as well as open-source AI models.

The whitepaper emphasizes the importance of combining human expertise with automation to detect and mitigate risks effectively.

One major lesson learned is the integration of generative AI into modern applications has not only expanded the cyberattack surface, but also brought unique challenges.

Techniques such as prompt injections exploit models’ inability to differentiate between system-level instructions and user inputs, enabling attackers to manipulate outcomes.

Meanwhile, traditional risks, such as outdated software dependencies or improper security engineering, remain significant, and Microsoft deem human expertise indispensable in countering them.

The team found an effective understanding of the risks surrounding automation often requires subject matter experts who can evaluate content in specialized fields such as medicine or cybersecurity.

Furthermore, it highlighted cultural competence and emotional intelligence as vital cybersecurity skills.

Microsoft also stressed the need for continuous testing, updated practices, and “break-fix” cycles, a process of identifying vulnerabilities and implementing fixes on top of additional testing.

This post was originally published on this site be sure to check out more of their content.

Baddies Midwest episode 12 recap: Ivori questions who changed the name tags while Nick Cannon sends an invite

“I’m serious” – Baddies Midwest star Ivori threatens to beat whoever put her nametag next to Big Lex’s

“It was premeditated”- Baddies Midwest star Diamond reflects on PrettyP’s sister beating her

Microsoft’s own baddie team ‘attacked’ more than 100 generative AI products: Here’s what they learnt

Microsoft’s red team whitepaper findings

You might also like

Sean ‘Diddy’ Combs got into argument with woman on Wyoming vacation 2…

Snag up to 68% OFF Rebecca Minkoff luxury bags with this code

After a pared back manicure to kick off the new year? These are hands down the best nail looks for a fresh start in 2025

Neon Nail Trends 2025: Chic Ways to Rock Bright Colors

Baddies Midwest episode 12 recap: Ivori questions who changed the name tags while Nick Cannon sends an invite

“I’m serious” – Baddies Midwest star Ivori threatens to beat whoever put her nametag next to Big Lex’s

“It was premeditated”- Baddies Midwest star Diamond reflects on PrettyP’s sister beating her

“Got her on a leash” — Baddies Midwest’s Natalie reacts to Rollie asking Slim to be her assistant