SShortSingh.
Back to feed

Cyrillic look-alike characters can silently bypass AI prompt safety filters

0
·3 views

A technique called homoglyph evasion allows attackers to bypass AI content filters by substituting standard Latin characters with visually identical Cyrillic or Greek Unicode equivalents. Because keyword and regex filters match raw bytes, a jailbreak phrase written with look-alike characters passes through undetected even though it appears identical to a human reader. Security researchers recommend normalizing input text into a canonical ASCII form before running detection rules, without altering the original text sent to the model. This normalization process involves stripping zero-width characters, applying NFKC Unicode normalization, and mapping known homoglyphs to their Latin counterparts. An open-source, OpenAI-compatible security gateway implementing this approach alongside roughly 170 other detection rules has been released to help developers address the vulnerability.

Read the full story at DEV Community

This is an AI-generated summary. ShortSingh links to the original source for the complete article.

Discussion (0)

Log in to join the discussion and vote.

Log in

Related stories

0
ProgrammingDEV Community ·

Why One Developer Built 131-Test Eval Harness Before Writing AI Agent Features

A developer building a production AI agent discovered that traditional unit tests failed to catch a critical silent error costing $0.03 per run, which nearly lost a client. The bug stemmed not from faulty code or a flawed LLM, but from a semantic mismatch between how the model interpreted 'last month' and how sales data was actually stored in the database. Each individual component passed its unit tests, yet the integrated system consistently returned wrong results for a common user query. This experience led the developer to build a 131-test evaluation harness across four layers before adding any new features, prioritizing system-level validation over isolated function testing. The harness was designed to catch emergent failures, semantic drift across component boundaries, and the wide range of unpredictable real-world user inputs that unit tests typically miss.

0
ProgrammingDEV Community ·

Developer Releases Free Customizable File Organizer Tool for Windows

A developer known as CodeSniper221 has released File Organizer, a lightweight Windows application aimed at simplifying file management. Unlike tools with rigid folder structures, it allows users to fully customize how their files are organized. The app is available for free download on both SourceForge and itch.io. The project is still under active development, and the creator is actively seeking user feedback and feature suggestions.

0
ProgrammingDEV Community ·

Engineer Launches Blog to Document Honest, Messy Learning Experiences

A software engineer has launched a personal blog on DEV Community, aiming to write about engineering projects, debugging struggles, and lessons learned the hard way. Unlike much polished engineering writing, the author intends to document real, messy experiences including failed assumptions and multiple attempts before getting things right. The motivation behind the blog is rooted in the belief that explaining concepts helps reinforce personal learning, while also potentially helping others avoid similar mistakes. Posts are expected to be short and cover topics such as tooling, engineering tradeoffs, burnout, and professional growth. The author emphasizes honesty over authority, framing the blog as a candid account of still being a work in progress.

0
ProgrammingDEV Community ·

How to Choose a Password Manager: Storage, Auth, and Ecosystem Explained

A developer's discovery that a shared project password had been leaked from a compromised service highlighted the critical importance of password managers in both personal and corporate security. The three key factors to evaluate when selecting a password manager are where passwords are stored, how authentication is handled, and what ecosystem support is offered. Local storage tools like KeePass keep encrypted databases on the user's own devices, giving full control but requiring manual backup and sync management. Cloud-based managers such as Bitwarden and 1Password use zero-knowledge encryption, meaning passwords are encrypted on-device before upload, though they still carry third-party breach risks — as demonstrated by the 2022 LastPass incident. Understanding these trade-offs is essential for making an informed choice that aligns with one's security needs and usage habits.