alt Hacker NewsExfil remains the big worry for my company and the main blocker from adopting agents in general. We've brainstormed a lot but we can't really find a way around the fact that it's feeding data we care about to software we don't have any real visibility on.
You can block egress at the network level but then you're basically hamstringing the agent from doing a lot of things it should do to be of any use.
Replies
yunusabd • today at 9:18 AM
Create an anonymized/obfuscated copy of your data and let the agents use that?
➕ show 1 reply
sofixa • today at 12:26 PM
I think the only solution to this kind of challenge is forcing the agent to go through a proxy which handles all the authentication and authorization for the agent (thus it never has too much access to abuse), and monitors for exfiltration or prompt injections.
Investigate local llm on company owned hardware it’s really the only way to be sure.