New Attack

Research on attacks against large language models (LLMs) and related AI systems is rapidly expanding, focusing on vulnerabilities exploited to elicit harmful outputs or extract sensitive information. Current efforts concentrate on developing and evaluating various attack methods, including jailbreaking, data poisoning, prompt injection, and membership inference attacks, often targeting specific model architectures like transformer-based LLMs and diffusion models. This research is crucial for understanding and mitigating the risks associated with increasingly powerful AI systems, informing the development of more robust and trustworthy AI applications across diverse sectors.

Papers

October 11, 2024

Do Unlearning Methods Remove Information from Language Model Weights?
Aghyad Deeb, Fabien Roger
Large Language Model Unlearning Framework New Attack Adversarial Evaluation

September 23, 2024

Effective and Evasive Fuzz Testing-Driven Jailbreaking Attacks against LLMs
Xueluan Gong, Mingzhe Li, Yilin Zhang, Fengyuan Ran, Chen Chen, Yanjiao Chen, Qian Wang, Kwok-Yan Lam
Large Language Model Jailbreak Attack New Attack Attack Framework Adaptive Mutation

September 12, 2024

Unleashing Worms and Extracting Data: Escalating the Outcome of Attacks against RAG-based Inference in Scale and Severity Using Jailbreaking
Stav Cohen, Ron Bitton, Ben Nassi
Membership Inference Attack Named Entity Recognition New Attack Data Poisoning Attack Severity Prediction Extraction Attack GenAI Model

August 28, 2024

FRACTURED-SORRY-Bench: Framework for Revealing Attacks in Conversational Turns Undermining Refusal Efficacy and Defenses over SORRY-Bench (Automated Multi-shot Jailbreaks)
Aman Priyanshu, Supriti Vijay
New Framework New Attack Adversarial Prompt Robust Defense Step Attack Refusal Training CodeRAG Bench

August 6, 2024

Attacks and Defenses for Generative Diffusion Models: A Comprehensive Survey
Vu Tuan Truong, Luan Ba Dang, Long Bao Le
Diffusion Model Adversarial Attack Comprehensive Survey New Attack Security Related Generative Diffusion Model Implicit Model

August 1, 2024

Pathway to Secure and Trustworthy 6G for LLMs: Attacks, Defense, and Opportunities
Sunder Ali Khowaja, Parus Khuwaja, Kapal Dev, Hussam Al Hamadi, Engin Zeydan
Large Language Model Membership Inference Attack New Attack Biological Pathway Model Privacy

July 16, 2024

Continuous Embedding Attacks via Clipped Inputs in Jailbreaking Large Language Models
Zihao Xu, Yi Liu, Gelei Deng, Kailong Wang, Yuekang Li, Ling Shi, Stjepan Picek
Large Language Model Jailbreak Attack New Attack Continuous Speech Discrete Prompt Suffix Prediction Continuous Embeddings

July 10, 2024

A Survey of Attacks on Large Vision-Language Models: Resources, Advances, and Future Trends
Daizong Liu, Mingyu Yang, Xiaoye Qu, Pan Zhou, Yu Cheng, Wei Hu
Adversarial Attack Large Vision Language Model New Attack New Resource Future Trend LLM Attack

July 6, 2024

A Novel Bifurcation Method for Observation Perturbation Attacks on Reinforcement Learning Agents: Load Altering Attacks on a Cyber Physical Power System
Kiernan Broda-Milian, Ranwa Al-Mallah, Hanane Dagdougui
Adversarial Attack Deep Reinforcement Learning Adversarial Example New Attack Reinforcement Learning Agent Renewable Energy Cyber Physical Bifurcation Diagram Untargeted Attack Norm Attack

June 22, 2024

Large Language Models for Link Stealing Attacks Against Graph Neural Networks
Faqian Guan, Tianqing Zhu, Hui Sun, Wanlei Zhou, Philip S. Yu
Graph Neural Network New Attack Graph Node Tiltable Link Citation Network

June 19, 2024

AgentDojo: A Dynamic Environment to Evaluate Prompt Injection Attacks and Defenses for LLM Agents
Edoardo Debenedetti, Jie Zhang, Mislav Balunović, Luca Beurer-Kellner, Marc Fischer, Florian Tramèr
Adversarial Robustness Dynamic Environment AI Agent New Attack LLM Agent Prompt Injection Attack Adaptive Attack Persona Agent

June 12, 2024

On Trojans in Refined Language Models
Jayaram Raghuram, George Kesidis, David J. Miller
Language Model New Attack Fine Tuned Language Model Data Poisoning

June 8, 2024

To what extent can ASV systems naturally defend against spoofing attacks?
Jee-weon Jung, Xin Wang, Nicholas Evans, Shinji Watanabe, Hye-jin Shim, Hemlata Tak, Sidhhant Arora, Junichi Yamagishi, Joon Son Chung
Zero Shot Speech Synthesis Speaker Verification New Attack Spoofing Aware Speaker Verification Automatic Speaker Verification

June 5, 2024

Defending Large Language Models Against Attacks With Residual Stream Activation Analysis
Amelia Kawasaki, Andrew Davis, Houssam Abbas
New Attack Adversarial Input Residual Stream Attack Dataset Adversarial Threat

May 31, 2024

Preemptive Answer "Attacks" on Chain-of-Thought Reasoning
Rongwu Xu, Zehan Qi, Wei Xu
Large Language Model Chain of Thought Reasoning Capability New Attack Impressive Reasoning Capability Preemptive Answer

May 26, 2024

Cross-Modality Jailbreak and Mismatched Attacks on Medical Multimodal Large Language Models
Xijie Huang, Xinyuan Wang, Hantao Zhang, Jiawen Xi, Jingkun An, Hao Wang, Chengwei Pan
Jailbreak Attack New Attack Real World Clinical Large Medical Model

May 22, 2024

DeepNcode: Encoding-Based Protection against Bit-Flip Attacks on Neural Networks
Patrik Velčický, Jakub Breier, Mladen Kovačević, Xiaolu Hou
Neural Network New Attack Bit Flip Attack Fault Injection Attack

May 20, 2024

Efficient Model-Stealing Attacks Against Inductive Graph Neural Networks
Marcin Podhajski, Jan Dubiński, Franziska Boenisch, Adam Dziedzic, Agnieszka Pregowska, Tomasz P. Michalak
Graph Neural Network High Efficiency New Attack Model Stealing Attack

May 10, 2024

PLeak: Prompt Leaking Attacks against Large Language Model Applications
Bo Hui, Haolin Yuan, Neil Gong, Philippe Burlina, Yinzhi Cao
Style PROMPT New Attack LLM Integrated Application Adversarial Question Language Model Application

May 9, 2024

Link Stealing Attacks Against Inductive Graph Neural Networks
Yixin Wu, Xinlei He, Pascal Berrang, Mathias Humbert, Michael Backes, Neil Zhenqiang Gong, Yang Zhang
Graph Structured Data New Attack Tiltable Link Transductive Transfer Learning

New Attack

Papers

Do Unlearning Methods Remove Information from Language Model Weights?

Effective and Evasive Fuzz Testing-Driven Jailbreaking Attacks against LLMs

Unleashing Worms and Extracting Data: Escalating the Outcome of Attacks against RAG-based Inference in Scale and Severity Using Jailbreaking

FRACTURED-SORRY-Bench: Framework for Revealing Attacks in Conversational Turns Undermining Refusal Efficacy and Defenses over SORRY-Bench (Automated Multi-shot Jailbreaks)

Attacks and Defenses for Generative Diffusion Models: A Comprehensive Survey

Pathway to Secure and Trustworthy 6G for LLMs: Attacks, Defense, and Opportunities

Continuous Embedding Attacks via Clipped Inputs in Jailbreaking Large Language Models

A Survey of Attacks on Large Vision-Language Models: Resources, Advances, and Future Trends

A Novel Bifurcation Method for Observation Perturbation Attacks on Reinforcement Learning Agents: Load Altering Attacks on a Cyber Physical Power System

Large Language Models for Link Stealing Attacks Against Graph Neural Networks

AgentDojo: A Dynamic Environment to Evaluate Prompt Injection Attacks and Defenses for LLM Agents

On Trojans in Refined Language Models

To what extent can ASV systems naturally defend against spoofing attacks?

Defending Large Language Models Against Attacks With Residual Stream Activation Analysis

Preemptive Answer "Attacks" on Chain-of-Thought Reasoning

Cross-Modality Jailbreak and Mismatched Attacks on Medical Multimodal Large Language Models

DeepNcode: Encoding-Based Protection against Bit-Flip Attacks on Neural Networks

Efficient Model-Stealing Attacks Against Inductive Graph Neural Networks

PLeak: Prompt Leaking Attacks against Large Language Model Applications

Link Stealing Attacks Against Inductive Graph Neural Networks