Sensitive information disclosure via large language models (LLMs) and generative AI has become a more critical risk as AI adoption surges, according to the Open Worldwide Application Security Project (OWASP) To this end, ‘sensitive information disclosure’ has been designated as the second biggest risk to LLMs and GenAI in OWASP’s updated Top 10 List for LLMs, up from sixth in the original 2023 version of the list. This relates to the risk of LLMs exposing sensitive data held by an organization during interactions with employees and customers, including personally identifiable information and intellectual property.

Source: Infosecurity Magazine – Information Security & IT Security