Attack Strategy

Attack strategies in machine learning and related fields focus on exploiting vulnerabilities in models and systems to achieve malicious objectives, such as data theft, model manipulation, or performance degradation. Current research emphasizes various attack types, including adversarial examples (e.g., crafted inputs causing misclassification), backdoor attacks (injecting triggers to control model outputs), and membership inference attacks (determining if a data point was used in training). These studies often involve deep neural networks, large language models, and reinforcement learning algorithms, and their findings are crucial for developing more robust and secure systems across diverse applications, from cybersecurity to AI safety.

Papers

December 12, 2023

Cost Aware Untargeted Poisoning Attack against Graph Neural Networks,
Yuwei Han, Yuni Lai, Yulin Zhu, Kai Zhou
Graph Neural Network Poisoning Attack Attack Strategy

December 8, 2023

Model Extraction Attacks Revisited
Jiacheng Liang, Ren Pang, Changjiang Li, Ting Wang
Attack Strategy Model Extraction Attack Model Extraction Machine Learning a a Service Attack Robustness Confidential Machine Learning

November 23, 2023

OASIS: Offsetting Active Reconstruction Attacks in Federated Learning
Tre' R. Jeter, Truc Nguyen, Raed Alharbi, My T. Thai
Attack Strategy Reconstruction Attack Gradient Inversion Step Attack

November 8, 2023

Army of Thieves: Enhancing Black-Box Model Extraction via Ensemble based sample selection
Akshit Jindal, Vikram Goyal, Saket Anand, Chetan Arora
Diverse Ensemble Attack Strategy Sample Selection Military Application Model Stealing Attack Model Stealing

October 24, 2023

Self-Guard: Empower the LLM to Safeguard Itself
Zezhong Wang, Fangkai Yang, Lu Wang, Pu Zhao, Hongru Wang, Liang Chen, Qingwei Lin, Kam-Fai Wong
Large Language Model Jailbreak Attack Attack Strategy Air Guardian System Content Detection

September 29, 2023

Practical Membership Inference Attacks Against Large-Scale Multi-Modal Models: A Pilot Study
Myeongseob Ko, Ming Jin, Chenguang Wang, Ruoxi Jia
Membership Inference Attack Pilot Study Attack Strategy Attack Method Large Multi Modal Model Set Membership

August 11, 2023

Physical Adversarial Attacks For Camera-based Smart Systems: Current Trends, Categorization, Applications, Research Challenges, and Future Outlook
Amira Guesmi, Muhammad Abdullah Hanif, Bassem Ouni, Muhammed Shafique
Adversarial Attack Computer Vision Financial Application Attack Strategy Research Challenge Camera Based

June 29, 2023

Group-based Robustness: A General Framework for Customized Robustness in the Real World
Weiran Lin, Keane Lucas, Neo Eyal, Lujo Bauer, Michael K. Reiter, Mahmood Sharif
Real World General Framework Robustness Evaluation Attack Strategy Evasion Attack Group Robustness Enhanced Robustness Robust Unsupervised

June 19, 2023

Practical and General Backdoor Attacks against Vertical Federated Learning
Yuexin Xuan, Xiaojun Chen, Zhendong Zhao, Bisheng Tang, Ye Dong
Federated Learning Backdoor Attack Vertical Federated Learning Practical Application Backdoor Trigger Attack Strategy

June 15, 2023

Inroads into Autonomous Network Defence using Explained Reinforcement Learning
Myles Foley, Mia Wang, Zoe M, Chris Hicks, Vasilios Mavroudis
Reinforcement Learning Adversarial Behavior Attack Strategy Defense Model Cyber Resilience Autonomous Network

June 8, 2023

Prompt Injection attack against LLM-integrated Applications
Yi Liu, Gelei Deng, Yuekang Li, Kailong Wang, Zihao Wang, Xiaofeng Wang, Tianwei Zhang, Yepang Liu, Haoyu Wang, Yan Zheng, Yang Liu
Attack Strategy Prompt Injection Attack LLM Integrated Application Prompt Injection Injection Attack

May 31, 2023

Red Teaming Language Model Detectors with Language Models
Zhouxing Shi, Yihan Wang, Fan Yin, Xiangning Chen, Kai-Wei Chang, Cho-Jui Hsieh
Large Language Model Language Model Adversarial Attack LLM Generated Red Teaming Attack Strategy LLM Generated Text

May 24, 2023

Introducing Competition to Boost the Transferability of Targeted Adversarial Examples through Clean Feature Mixup
Junyoung Byun, Myung-Joon Kwon, Seungju Cho, Yoonji Kim, Changick Kim
Deep Neural Network Adversarial Example Adversarial Perturbation Task Transferability Competition Platform Attack Strategy Feature Mixing

May 18, 2023

Attacks on Online Learners: a Teacher-Student Analysis
Riccardo Giuseppe Margiotta, Sebastian Goldt, Guido Sanguinetti
Adversarial Attack New Attack Learning Dynamic Attack Strategy Online Learner

April 21, 2023

ANALYSE -- Learning to Attack Cyber-Physical Energy Systems With Intelligent Agents
Thomas Wolgast, Nils Wenninghoff, Stephan Balduin, Eric Veith, Bastian Fraune, Torben Woltjen, Astrid Nieße
Intelligent Agent Cyber Physical Attack Strategy Targeted Attack Energy Market Analyse Text Unknown Attack

March 19, 2023

LiDAR Spoofing Meets the New-Gen: Capability Improvements, Broken Assumptions, and New Attack Strategies
Takami Sato, Yuki Hayakawa, Ryo Suzuki, Yohsuke Shiiki, Kentaro Yoshioka, Qi Alfred Chen
Mid Range LiDAR LiDAR Point Cloud Capability Evolution Modeling Assumption Attack Strategy Next Generation High Power Laser Lidar Based Detector

February 16, 2023

SplitOut: Out-of-the-Box Training-Hijacking Detection in Split Learning via Outlier Detection
Ege Erdogan, Unat Teksen, Mehmet Salih Celiktenyildiz, Alptekin Kupcu, A. Ercument Cicek
Deep Neural Network Data Detection Outlier Detection Split Learning Attack Strategy Split and Fit Training Time Attack Training Data Privacy Shelf Model

February 1, 2023

Effectiveness of Moving Target Defenses for Adversarial Attacks in ML-based Malware Detection
Aqib Rashid, Jose Such
Adversarial Attack Attack Strategy Adversarial Machine Learning Based Malware Detection Moving Target Defense

January 23, 2023

BayBFed: Bayesian Backdoor Defense for Federated Learning
Kavita Kumari, Phillip Rieger, Hossein Fereidooni, Murtuza Jadliwala, Ahmad-Reza Sadeghi
Backdoor Attack Backdoor Defense Attack Strategy

January 12, 2023

Jamming Attacks on Decentralized Federated Learning in General Multi-Hop Wireless Networks
Yi Shi, Yalin E. Sagduyu, Tugba Erpek
Decentralized Federated Learning Multi Hop Decentralized FL Attack Strategy Jamming Attack Fabric Jamming

Attack Strategy

Papers

Cost Aware Untargeted Poisoning Attack against Graph Neural Networks,

Model Extraction Attacks Revisited

OASIS: Offsetting Active Reconstruction Attacks in Federated Learning

Army of Thieves: Enhancing Black-Box Model Extraction via Ensemble based sample selection

Self-Guard: Empower the LLM to Safeguard Itself

Practical Membership Inference Attacks Against Large-Scale Multi-Modal Models: A Pilot Study

Physical Adversarial Attacks For Camera-based Smart Systems: Current Trends, Categorization, Applications, Research Challenges, and Future Outlook

Group-based Robustness: A General Framework for Customized Robustness in the Real World

Practical and General Backdoor Attacks against Vertical Federated Learning

Inroads into Autonomous Network Defence using Explained Reinforcement Learning

Prompt Injection attack against LLM-integrated Applications

Red Teaming Language Model Detectors with Language Models

Introducing Competition to Boost the Transferability of Targeted Adversarial Examples through Clean Feature Mixup

Attacks on Online Learners: a Teacher-Student Analysis

ANALYSE -- Learning to Attack Cyber-Physical Energy Systems With Intelligent Agents

LiDAR Spoofing Meets the New-Gen: Capability Improvements, Broken Assumptions, and New Attack Strategies

SplitOut: Out-of-the-Box Training-Hijacking Detection in Split Learning via Outlier Detection

Effectiveness of Moving Target Defenses for Adversarial Attacks in ML-based Malware Detection

BayBFed: Bayesian Backdoor Defense for Federated Learning

Jamming Attacks on Decentralized Federated Learning in General Multi-Hop Wireless Networks