Findings

AI Output Tokens Elevated

Updated: June 19, 2025

findings log based findings ai finding

Description

The average number of AI-generated output tokens during a given period was greater than or equal to the mean average and one standard deviation of the preceding period.

Remediation

Investigate what has caused the AI output token count to increase significantly.

Security Frameworks

OWASP AI 2025

LLM10:2025 Unbounded Consumption

Unbounded Consumption occurs when a Large Language Model (LLM) application allows users to conduct excessive and uncontrolled inferences, leading to risks such as denial of service (DoS), economic losses, model theft, and service degradation.

MITRE ATLAS

AML.T0029: Denial of ML Service

Adversaries may target machine learning systems with a flood of requests for the purpose of degrading or shutting down the service. Since many machine learning systems require significant amounts of specialized compute, they are often expensive bottlenecks that can become overloaded. Adversaries can intentionally craft inputs that require heavy amounts of useless compute from the machine learning system.

AML.T0034: Cost Harvesting

Adversaries may target different machine learning services to send useless queries or computationally expensive inputs to increase the cost of running services at the victim organization. Sponge examples are a particular type of adversarial data designed to maximize energy consumption and thus operating cost.

Need help?

Contact FireTail support

Previous (Findings - Log based findings)
AI Majority Stop Reason
Next (Findings - Log based findings)
AI Output Tokens Reduced