Indirect (a4a55526-2f1f-403b-9691-609e46381e17)
An adversary may inject prompts indirectly via separate data channel ingested by the LLM such as include text or multimedia pulled from databases or websites. These malicious prompts may be hidden or obfuscated from the user. This type of injection may be used by the adversary to gain a foothold in the system or to target an unwitting user of the system.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Indirect (a4a55526-2f1f-403b-9691-609e46381e17) | MITRE ATLAS Attack Pattern | LLM Prompt Injection (19cd2d12-66ff-487c-a05c-e058b027efc9) | MITRE ATLAS Attack Pattern | 1 |