​​Whisper Leak: A novel side-channel attack on remote language models - Microsoft

The "Whisper Leak" is a novel side-channel attack that infers language model conversation topics by analyzing network packet sizes and timings, even when communications are protected by end-to-end TLS encryption. This allows attackers observing network traffic to deduce sensitive information about user prompts, posing significant privacy risks to users and enterprises.