361

Google Researchers’ Attack Prompts ChatGPT to Reveal Its Training Data (www.404media.co)

submitted 10 months ago* (last edited 10 months ago) by btp@kbin.social to c/privacy@lemmy.ml

76 comments fedilink hide all child comments

ChatGPT is full of sensitive private information and spits out verbatim text from CNN, Goodreads, WordPress blogs, fandom wikis, Terms of Service agreements, Stack Overflow source code, Wikipedia pages, news blogs, random internet comments, and much more.

Using this tactic, the researchers showed that there are large amounts of privately identifiable information (PII) in OpenAI’s large language models. They also showed that, on a public version of ChatGPT, the chatbot spit out large passages of text scraped verbatim from other places on the internet.

“In total, 16.9 percent of generations we tested contained memorized PII,” they wrote, which included “identifying phone and fax numbers, email and physical addresses … social media handles, URLs, and names and birthdays.”

Edit: The full paper that's referenced in the article can be found here

you are viewing a single comment's thread
view the rest of the comments

[-] Solumbran@lemmy.world 63 points 10 months ago

Publicly available does not mean free to use.

[-] Chozo@kbin.social 7 points 10 months ago

It also doesn't mean it inherently isn't free to use, either. The article doesn't say whether or not the PII in question was intended to be private or public.

[-] Davel23@kbin.social 28 points 10 months ago

I could leave my car with the keys in the ignition in the bad part of town. It's still not legal to steal it.

[-] Chozo@kbin.social 11 points 10 months ago

Again, the article doesn't say whether or not the data was intended to be public. People post their contact info online on purpose sometimes, you know. Businesses and shit. Which seems most likely to be what's happened, given that the example has a fax number.

[-] Dran_Arcana@lemmy.world 5 points 10 months ago

If someone had some theoretical device that could x-ray, 3d image, and 3d print an exact replica of your car though, that would be legal. That's a closer analogy.

It's not illegal to reverse-engineer and reproduce for personal use. It is questionably legal though to sell the reproduction. However, if the car were open-source or otherwise not copyrighted/patented it probably would be legal to sell the reproduction.

[-] TSG_Asmodeus@lemmy.world 6 points 10 months ago

[-] j4k3@lemmy.world 7 points 10 months ago

Irrelevant! Your car is uploading you!

[-] Dran_Arcana@lemmy.world 5 points 10 months ago

I absolutely would

this post was submitted on 29 Nov 2023

361 points (100.0% liked)

Privacy

31324 readers

568 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 4 years ago

MODERATORS