undefined | Better HN

0 pointsalexhans1mo ago0 comments

The website is great as a concept but I guess it mimics an increasingly rare one off interaction without feedback.

I understand the cost and technical constraints but wouldn't an exposed interface allow repeated calls from different endpoints and increased knowledge from the attacker based on responses? Isn't this like attacking an API without a response payload?

Do you plan on sharing a simulator where you have 2 local servers or similar and are allowed to really mimic a persistent attacker? Wouldn't that be somewhat more realistic as a lab experiment?

0 comments

cuchoi1mo ago

The exercise is not fully realistic because I think getting hundreds of suspicious emails puts the agent in alert. But the "no reply without human approval" part I think it is realistic because that's how most openclaw assistants will run.

alexhansOP1mo ago

Point taken. I was mistakenly assuming a conversational agent experience.

I love the idea of showing how easy prompt injection or data exfiltration could be in a safe environment for the user and will definitely keep an eye out on any good "game" demonstration.

Reminds me of the old hack this site but live.

I'll keep an eye out for the aftermath.

cyanydeez1mo ago

Security through obscurely programmed model is a new paradigm I suppose.

j / k navigate · click thread line to collapse