Philipp Zimmermann
← Back to Newsletter

Paper Library

Collection of AI Security research papers

Showing 770 papers total

May 26 - June 01, 2025

12 papers

TRIDENT: Enhancing Large Language Model Safety with Tri-Dimensional Diversified Red-Teaming Data Synthesis

Xiaorui Wu, Xiaofeng Mao, Fei Li, Xin Zhang, Xuanhong Li, Chong Teng, Donghong Ji, Zhuang Li
2025-05-30
red teaming
2505.24672v1

Benchmarking Large Language Models for Cryptanalysis and Mismatched-Generalization

Utsav Maskey, Chencheng Zhu, Usman Naseem
2025-05-30
red teaming
2505.24621v1

AMIA: Automatic Masking and Joint Intention Analysis Makes LVLMs Robust Jailbreak Defenders

Yuqi Zhang, Yuchun Miao, Zuchao Li, Liang Ding
2025-05-30
2505.24519v1

Model Unlearning via Sparse Autoencoder Subspace Guided Projections

Xu Wang, Zihao Li, Benyou Wang, Yan Hu, Difan Zou
2025-05-30
2505.24428v1

From Hallucinations to Jailbreaks: Rethinking the Vulnerability of Large Foundation Models

Haibo Jin, Peiyan Zhang, Peiran Wang, Man Luo, Haohan Wang
2025-05-30
red teaming
2505.24232v1

Bootstrapping LLM Robustness for VLM Safety via Reducing the Pretraining Modality Gap

Wenhan Yang, Spencer Stice, Ali Payani, Baharan Mirzasoleiman
2025-05-30
safety
2505.24208v1

The State of Multilingual LLM Safety Research: From Measuring the Language Gap to Mitigating It

Zheng-Xin Yong, Beyza Ermis, Marzieh Fadaee, Stephen H. Bach, Julia Kreutzer
2025-05-30
safety
2505.24119v1

Understanding Refusal in Language Models with Sparse Autoencoders

Wei Jie Yeo, Nirmalendu Prakash, Clement Neo, Roy Ka-Wei Lee, Erik Cambria, Ranjan Satapathy
2025-05-29
red teaming
2505.23556v1

Adaptive Jailbreaking Strategies Based on the Semantic Understanding Capabilities of Large Language Models

Mingyu Yu, Wei Wang, Yanjie Wei, Sujuan Qin
2025-05-29
red teaming
2505.23404v1

Operationalizing CaMeL: Strengthening LLM Defenses for Enterprise Deployment

Krti Tallam, Emma Miller
2025-05-28
safety
2505.22852v1

GeneBreaker: Jailbreak Attacks against DNA Language Models with Pathogenicity Guidance

Zaixi Zhang, Zhenghong Zhou, Ruofan Jin, Le Cong, Mengdi Wang
2025-05-28
2505.23839v1

JailBound: Jailbreaking Internal Safety Boundaries of Vision-Language Models

Jiaxin Song, Yixu Wang, Jie Li, Rui Yu, Yan Teng, Xingjun Ma, Yingchun Wang
2025-05-26
red teaming
2505.19610v2

May 19 - May 25, 2025

4 papers

A Critical Evaluation of Defenses against Prompt Injection Attacks

Yuqi Jia, Zedian Shao, Yupei Liu, Jinyuan Jia, Dawn Song, Neil Zhenqiang Gong
2025-05-23
2505.18333v1

Understanding and Mitigating Overrefusal in LLMs from an Unveiling Perspective of Safety Decision Boundary

Licheng Pan, Yongqi Tong, Xin Zhang, Xiaolu Zhang, Jun Zhou, Zhixuan Chu
2025-05-23
safety
2505.18325v2

Is Your Prompt Safe? Investigating Prompt Injection Attacks Against Open-Source LLMs

Jiawen Wang, Pritha Gupta, Ivan Habernal, Eyke Hüllermeier
2025-05-20
red teaming
2505.14368v1

EVA: Red-Teaming GUI Agents via Evolving Indirect Prompt Injection

Yijie Lu, Tianjie Ju, Manman Zhao, Xinbei Ma, Yuan Guo, ZhuoSheng Zhang
2025-05-20
red teaming
2505.14289v1

May 12 - May 18, 2025

2 papers

CAPTURE: Context-Aware Prompt Injection Testing and Robustness Enhancement

Gauri Kholkar, Ratinder Ahuja
2025-05-18
red teaming
2505.12368v2

WebInject: Prompt Injection Attack to Web Agents

Xilong Wang, John Bloch, Zedian Shao, Yuepeng Hu, Shuyan Zhou, Neil Zhenqiang Gong
2025-05-16
red teaming
2505.11717v4

May 05 - May 11, 2025

1 paper

System Prompt Poisoning: Persistent Attacks on Large Language Models Beyond User Injection

Zongze Li, Jiawei Guo, Haipeng Cai
2025-05-10
red teaming
2505.06493v3

April 28 - May 04, 2025

3 papers

OET: Optimization-based prompt injection Evaluation Toolkit

Jinsheng Pan, Xiaogeng Liu, Chaowei Xiao
2025-05-01
red teaming
2505.00843v1

CachePrune: Neural-Based Attribution Defense Against Indirect Prompt Injection Attacks

Rui Wang, Junda Wu, Yu Xia, Tong Yu, Ruiyi Zhang, Ryan Rossi, Lina Yao, Julian McAuley
2025-04-29
red teaming
2504.21228v1

Prompt Injection Attack to Tool Selection in LLM Agents

Jiawen Shi, Zenghui Yuan, Guiyao Tie, Pan Zhou, Neil Zhenqiang Gong, Lichao Sun
2025-04-28
red teaming
2504.19793v3

April 21 - April 27, 2025

2 papers

Adversarial Attacks on LLM-as-a-Judge Systems: Insights from Prompt Injections

Narek Maloyan, Dmitry Namiot
2025-04-25
red teaming
2504.18333v1

WASP: Benchmarking Web Agent Security Against Prompt Injection Attacks

Ivan Evtimov, Arman Zharmagambetov, Aaron Grattafiori, Chuan Guo, Kamalika Chaudhuri
2025-04-22
red teaming
2504.18575v3