SAIL 2.0

/

Monitor: AI Activity Tracing & Telemetry

/

Data Exfiltration via Monitoring / Telemetry

7.4

.

Data Exfiltration via Monitoring / Telemetry

sail
7.4
Risk

Data Exfiltration via Monitoring / Telemetry

Description

Attackers abuse telemetry or monitoring endpoints to exfiltrate sensitive data.

Example

Malicious actor exploits insecure telemetry endpoint to siphon model outputs or logs.

Assets Affected

AI Platform

Mitigation
  • Secure monitoring interfaces
  • restrict telemetry content
  • audit and monitor access
  • alert on unusual data transfers.
Standards Mapping
  • ISO: A.6.2.8
  • OWASP agentic: ASI06
  • OWASP LLM: LLM02:2025
  • EU AI Act: Art. 15(5)
  • DASF: Agents-MCP Server 13.23
  • AIUC-1: A006, B009