The AI Native Dev - from Copilot today to AI Native Software Development tomorrow

How Attackers Trick AI: Lessons from Gandalf’s Creator

Mar 18, 2025

Explore the intriguing world of AI security as experts discuss the alarming vulnerabilities facing modern systems. Discover how attackers use techniques like prompt injections and jailbreaks to exploit AI models. Gain insights into Gandalf’s staggering 60M+ attack attempts, revealing urgent security challenges. Learn about the importance of red teaming and the Dynamic Security Utility Framework in preventing AI disasters. Dive into the balance between security and usability, and the dual role of AI in enhancing creativity while posing risks.

54:35

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Attackers exploit vulnerabilities in AI systems, using methods like prompt injections and jailbreaks to manipulate outputs.

Data poisoning presents a significant risk during AI model training, potentially embedding harmful alterations that are hard to detect afterward.

Gandalf’s user interactions provide valuable insights into LLM vulnerabilities, aiding developers in creating more robust security measures against real attacks.

Deep dives

Exploration of LLM Security Concepts

LLM security involves understanding various vulnerabilities that can arise in applications that utilize large language models (LLMs). Traditional security concerns, such as permissions and access controls, remain relevant, ensuring only authorized users can access sensitive data. However, LLMs introduce new challenges, as they often blur the line between developer instructions and external inputs, facilitating potential attacks through data manipulation. This new landscape highlights the necessity of robust security measures tailored to LLM contexts, where data itself can trigger unintended behaviors.

Intro

3min

Vulnerabilities in Language Models

7min

Understanding AI Model Vulnerabilities: Types of Attacks Explained

2min

Navigating AI Security Threats

3min

Navigating AI Security Challenges

21min

Navigating AI Vulnerabilities and Creativity

15min

Integrating Utility and Security in AI Development

3min

🔒 How Secure is AI? Gandalf’s Creator Exposes the Risks 🔥

AI security is under attack, and hackers are finding new ways to manipulate AI systems. In this episode, Guy Podjarny sits down with Mateo Rojas-Carulla, co-founder of Lakera and creator of Gandalf, to break down the biggest threats facing AI today—from prompt injections and jailbreaks to data poisoning and agent manipulation.

What You’ll Learn:
- How attackers exploit AI vulnerabilities in real-world applications
- Why AI models struggle to separate instructions from external data
- How Gandalf’s 60M+ attack attempts revealed shocking insights
- What the Dynamic Security Utility Framework (DSEC) means for AI safety
- Why red teaming is critical for preventing AI disasters

Whether you’re a developer, security expert, or just curious about AI risks, this episode is packed with must-know insights on keeping AI safe in an evolving landscape.

💡 Can AI truly be secured? Or will attackers always find a way? Drop your thoughts in the comments! 👇

Watch the episode on YouTube: https://youtu.be/RKCvlJT_r4s

Join the AI Native Dev Community on Discord: https://tessl.co/4ghikjh

Ask us questions: podcast@tessl.io

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

The AI Native Dev - from Copilot today to AI Native Software Development tomorrow

How Attackers Trick AI: Lessons from Gandalf’s Creator