I hope you are able to use the latest Apple OSs with Siri AI completely turned off. I believe that, as described, it will be a fertile ground for malware reminiscent of Windows 20 years ago.I would love if anyone has information about the details of Siri AI that refute this.1. Stopping prompt injections is impossible right now.To back this up, read Anthropic’s system card for Opus 4.8. Page 77 shows the various top model’s probability of stopping prompt injections. Opus 4.8 is just under 10% with 100 attempts. Gemini (which Siri is based on) is 45% with 100 attempts.This may be an inevitable and unsolvable problem. So …2. We must assume that any Agent that has been exposed to text that we don’t trust is under the control of an adversary.This is a design constraint right now. The rest of the system must be architected around this assumption.I would never run an agent on my personal machine, because …3. There is a lot of untrusted text on my personal devices.Here is a partial list: All…
No comments yet. Log in to reply on the Fediverse. Comments will appear here.