Text Attack

Text attacks involve crafting malicious inputs—often subtly altered text or images—to deceive large language models (LLMs) and other AI systems, compromising their accuracy and safety. Current research focuses on developing increasingly sophisticated attack methods, including gradient-based approaches for image manipulation and "priming attacks" that exploit vulnerabilities in model training, while also exploring defenses such as watermarking and improved model robustness through techniques like adversarial training and saliency-based detection. Understanding and mitigating these attacks is crucial for ensuring the reliability and trustworthiness of AI systems across various applications, from cybersecurity to information retrieval.

Papers

October 4, 2024

Gradient-based Jailbreak Images for Multimodal Fusion Models
Javier Rando, Hannah Korevaar, Erik Brinkman, Ivan Evtimov, Florian Tramèr
Jailbreak Attack Adversarial Input Text Attack Multimodal Fusion Model Gradient Attack Representation Engineering

July 25, 2024

Is the Digital Forensics and Incident Response Pipeline Ready for Text-Based Threats in LLM Era?
Avanti Bhandarkar, Ronald Wilson, Anushka Swarup, Mengdi Zhu, Damon Woodard
Text Based Text Attack LLM Era Hierarchical Attribution Authorship Identification

July 16, 2024

Learning on Graphs with Large Language Models(LLMs): A Deep Dive into Model Robustness
Kai Guo, Zewen Liu, Zhikai Chen, Hongzhi Wen, Wei Jin, Jiliang Tang, Yi Chang
Large Language Model LeArning Abstract Adversarial Attack Graph Drawing Model Robustness Deep Dive Text Attack Text Perturbation

July 5, 2024

On Evaluating The Performance of Watermarked Machine-Generated Texts Under Adversarial Attacks
Zesen Liu, Tianshuo Cong, Xinlei He, Qi Li
Adversarial Attack System Performance Agnostic Watermarking Generated Text Text Watermarking LLM Watermarking Text Attack

June 18, 2024

Assessing AI vs Human-Authored Spear Phishing SMS Attacks: An Empirical Study Using the TRAPD Method
Jerson Francia, Derek Hansen, Ben Schooley, Matthew Taylor, Shydra Murray, Greg Snow
Artificial Intelligence Text Generation Empirical Study Deceptive Diffusion Text Attack Human Writer Social Engineering Attack Field Trap

February 1, 2024

Vision-LLMs Can Fool Themselves with Self-Generated Typographic Attacks
Maan Qraitem, Nazia Tasnim, Piotr Teterwak, Kate Saenko, Bryan A. Plummer
Untargeted Attack Text Attack Typographic Attack

December 19, 2023

Bypassing the Safety Training of Open-Source LLMs with Priming Attacks
Jason Vega, Isha Chaudhary, Changming Xu, Gagandeep Singh
Attack Success Rate Open Source LLM Text Attack

October 16, 2023

Survey of Vulnerabilities in Large Language Models Revealed by Adversarial Attacks
Erfan Shayegani, Md Abdullah Al Mamun, Yu Fu, Pedram Zaree, Yue Dong, Nael Abu-Ghazaleh
Timely Survey Adversarial Attack Security Vulnerability Text Attack Modal Attack

July 13, 2023

Effective Prompt Extraction from Language Models
Yiming Zhang, Nicholas Carlini, Daphne Ippolito
Large Language Model Language Model Adversarial Agent Text Attack Prompt Extraction

June 12, 2023

When Vision Fails: Text Attacks Against ViT and OCR
Nicholas Boucher, Jenny Blessing, Ilia Shumailov, Ross Anderson, Nicolas Papernot
Adversarial Example Vision Paper Visual Input Gallery Style OCR ViT Lens Text Attack Text Based Model

June 5, 2023

Stable Diffusion is Unstable
Chengbin Du, Yanxi Li, Zhongwei Qiu, Chang Xu
Text to Image Model Stable Diffusion Text Attack

May 31, 2023

Adversarial Clean Label Backdoor Attacks and Defenses on Text Classification Systems
Ashim Gupta, Amrith Krishna
Text Classification Clean Label Backdoor Attack Text Attack Clean Label Attack Clean Label

May 24, 2023

How do humans perceive adversarial text? A reality check on the validity and naturalness of word-based adversarial attacks
Salijona Dyrmishi, Salah Ghamizi, Maxime Cordy
Adversarial Attack Adversarial Example Adversarial Perturbation Adversarial Text Concurrent Validity Visual Naturalness Text Attack Reality Check Word Level Adversarial

February 12, 2023

TextDefense: Adversarial Text Detection based on Word Importance Entropy
Lujia Shen, Xuhong Zhang, Shouling Ji, Yuwen Pu, Chunpeng Ge, Xing Yang, Yanghe Feng
Adversarial Attack Adversarial Example Adversarial Text Textual Adversarial Attack Text Attack Lexicon Entropy

February 3, 2023

TextShield: Beyond Successfully Detecting Adversarial Sentences in Text Classification
Lingfeng Shen, Ze Zhang, Haiyun Jiang, Ying Chen
Adversarial Attack Text Classification Adversarial Text Text Attack

October 21, 2022

TCAB: A Large-Scale Text Classification Attack Benchmark
Kalyani Asthana, Zhouhang Xie, Wencong You, Adam Noack, Jonathan Brophy, Sameer Singh, Daniel Lowd
Adversarial Attack Text Classification Text Attack Label Attack

October 1, 2022

Synthetic Text Detection: Systemic Literature Review
Jesus Guerrero, Izzat Alsmadi
Systematic Literature Review Text Analysis Detection Algorithm Text Attack Synthetic Text

July 6, 2022

Adversarial Robustness of Visual Dialog
Lu Yu, Verena Rieser
Adversarial Robustness Model Robustness Dialog Model Visual Dialog Adversarial Testing Text Attack

March 19, 2022

On Robust Prefix-Tuning for Text Classification
Zonghan Yang, Yang Liu
Text Classification Prefix Tuning Textual Adversarial Attack Text Attack