Typographic Attack

Typographic attacks exploit the vulnerability of vision-language models (VLMs) to misleading text overlaid on images, causing misclassifications or incorrect reasoning. Current research focuses on understanding the susceptibility of various VLMs, including large language models and those used in autonomous driving, to these attacks, developing methods to generate more effective attacks (e.g., using reinforcement learning and self-generated attacks), and exploring defense mechanisms such as prefix learning. This research is crucial for improving the robustness and security of VLMs, particularly in high-stakes applications where misclassification could have serious consequences.

Papers

December 7, 2024

Uncovering Vision Modality Threats in Image-to-Image Tasks
Hao Cheng, Erjia Xiao, Jiayan Yang, Jiahang Cao, Qiang Zhang, Jize Zhang, Kaidi Xu, Jindong Gu, Renjing Xu
Image to Image Translation Image Generation Model Sentence Level Attack Typographic Attack

November 28, 2024

SceneTAP: Scene-Coherent Typographic Adversarial Planner against Vision-Language Models in Real-World Environments
Yue Cao, Yun Xing, Jie Zhang, Di Lin, Tianwei Zhang, Ivor Tsang, Yang Liu, Qing Guo
Vision Language Model Adversarial Text Real World Environment Typographic Attack Adversarial Planning

November 8, 2024

Reasoning Robustness of LLMs to Adversarial Typographical Errors
Esther Gan, Yiran Zhao, Liying Cheng, Yancan Mao, Anirudh Goyal, Kenji Kawaguchi, Min-Yen Kan, Michael Shieh
Large Language Model Closed Source Large Language Model Robust Reasoning Typographic Attack

August 22, 2024

Query-Efficient Video Adversarial Attack with Stylized Logo
Duoxun Tang, Yuxin Cao, Xi Xiao, Derui Wang, Sheng Wen, Tianqing Zhu
Adversarial Attack Adversarial Example Video Classification Replay Attack Stylized Novel View Typographic Attack

June 3, 2024

SLANT: Spurious Logo ANalysis Toolkit
Maan Qraitem, Piotr Teterwak, Kate Saenko, Bryan A. Plummer
Zero Shot Logo Detection Harmless Logo Downstream Recognition Typographic Attack

May 30, 2024

Typography Leads Semantic Diversifying: Amplifying Adversarial Transferability across Multimodal Large Language Models
Hao Cheng, Erjia Xiao, Jiayan Yang, Jiahang Cao, Qiang Zhang, Le Yang, Jize Zhang, Kaidi Xu, Jindong Gu, Renjing Xu
Adversarial Example Multimodal Large Language Model Semantic Diversity Typographic Attack

May 23, 2024

Towards Transferable Attacks Against Vision-LLMs in Autonomous Driving with Typography
Nhat Chung, Sensen Gao, Tuan-Anh Vu, Jie Zhang, Aishan Liu, Yun Lin, Jin Song Dong, Qing Guo
Adversarial Attack Autonomous Driving Large Vision Language Model Transferable Attack Visual Language Reasoning Typographic Attack

February 29, 2024

Unveiling Typographic Deceptions: Insights of the Typographic Vulnerability in Large Vision-Language Model
Hao Cheng, Erjia Xiao, Jindong Gu, Le Yang, Jinhao Duan, Jize Zhang, Jiahang Cao, Kaidi Xu, Renjing Xu
Large Vision Language Model DCU Insight AQ Contrastive Language Image Typographic Attack Kinetic Typography

February 1, 2024

Vision-LLMs Can Fool Themselves with Self-Generated Typographic Attacks
Maan Qraitem, Nazia Tasnim, Piotr Teterwak, Kate Saenko, Bryan A. Plummer
Untargeted Attack Text Attack Typographic Attack

May 19, 2023

Persian Typographical Error Type Detection Using Deep Neural Networks on Algorithmically-Generated Misspellings
Mohammad Dehghani, Heshaam Faili
Deep Neural Network Spelling Correction Typographic Attack Persian Text Persian Font

April 10, 2023

Defense-Prefix for Preventing Typographic Attacks on CLIP
Hiroki Azuma, Yusuke Matsui
Adversarial Attack Single CLIP Prefix to Prefix Typographic Attack