Exfiltration (6 techniques)
MITRE ATLAS tactic
The adversary is trying to steal AI artifacts or other information about the AI system. Exfiltration consists of techniques that adversaries may use to steal data from your network. Data may be stolen for its valuable intellectual property, or for use in staging future operations. Techniques for getting data out of a target network typically include transferring it over their command and control channel or an alternate channel and may also include putting size limits on the transmission.
Techniques
- AML.T0024 — Exfiltration via AI Inference API Maturity: realized
- AML.T0025 — Exfiltration via Cyber Means Maturity: realized
- AML.T0056 — Extract LLM System Prompt Maturity: feasible
- AML.T0057 — LLM Data Leakage Maturity: demonstrated
- AML.T0077 — LLM Response Rendering Maturity: demonstrated
- AML.T0086 — Exfiltration via AI Agent Tool Invocation Maturity: realized
AI red teaming training, taught by practitioners.
Hands-on courses on adversarial AI, prompt injection, and AI security operations.
View AI Security Courses