Paper Library

Detecting Misbehaviors of Large Vision-Language Models by Evidential Uncertainty Quantification

Tao Huang, Rui Wang, Xiaofei Liu, Yi Qin, Li Duan, Liping Jing

2026-02-05

red teaming

2602.05535v1

Clouding the Mirror: Stealthy Prompt Injection Attacks Targeting LLM-based Phishing Detection

Takashi Koide, Hiroki Nakano, Daiki Chiba

2026-02-05

red teaming

2602.05484v1

Causal Front-Door Adjustment for Robust Jailbreak Attacks on LLMs

Yao Zhou, Zeen Song, Wenwen Qiang, Fengge Wu, Shuyi Zhou, Changwen Zheng, Hui Xiong

2026-02-05

red teaming

2602.05444v2

Causal Front-Door Adjustment for Robust Jailbreak Attacks on LLMs

Yao Zhou, Zeen Song, Wenwen Qiang, Fengge Wu, Shuyi Zhou, Changwen Zheng, Hui Xiong

2026-02-05

red teaming

2602.05444v1

Copyright Detective: A Forensic System to Evidence LLMs Flickering Copyright Leakage Risks

Guangwei Zhang, Jianing Zhu, Cheng Qian, Neil Gong, Rada Mihalcea, Zhaozhuo Xu, Jingrui He, Jiaqi Ma, Yun Huang, Chaowei Xiao, Bo Li, Ahmed Abbasi, Dongwon Lee, Heng Ji, Denghui Zhang

2026-02-05

2602.05252v2

Copyright Detective: A Forensic System to Evidence LLMs Flickering Copyright Leakage Risks

Guangwei Zhang, Jianing Zhu, Cheng Qian, Neil Gong, Rada Mihalcea, Zhaozhuo Xu, Jingrui He, Jiaqi Ma, Yun Huang, Chaowei Xiao, Bo Li, Ahmed Abbasi, Dongwon Lee, Heng Ji, Denghui Zhang

2026-02-05

2602.05252v1

Bypassing AI Control Protocols via Agent-as-a-Proxy Attacks

Jafar Isbarov, Murat Kantarcioglu

2026-02-04

red teaming

2602.05066v2

Bypassing AI Control Protocols via Agent-as-a-Proxy Attacks

Jafar Isbarov, Murat Kantarcioglu

2026-02-04

red teaming

2602.05066v1

Trust The Typical

Debargha Ganguly, Sreehari Sankar, Biyao Zhang, Vikash Singh, Kanan Gupta, Harshini Kavuru, Alan Luo, Weicong Chen, Warren Morningstar, Raghu Machiraju, Vipin Chaudhary

2026-02-04

2602.04581v1

LLM as a Risk Manager: LLM Semantic Filtering for Lead-Lag Trading in Prediction Markets

Sumin Kim, Minjae Kim, Jihoon Kwon, Yoon Kim, Nicole Kagan, Joo Won Lee, Oscar Levy, Alejandro Lopez-Lira, Yongjae Lee, Chanyeol Choi

2026-02-04

2602.07048v1

The Supportiveness-Safety Tradeoff in LLM Well-Being Agents

Himanshi Lalwani, Hanan Salam

2026-02-04

safety

2602.04487v1

RASA: Routing-Aware Safety Alignment for Mixture-of-Experts Models

Jiacheng Liang, Yuhui Wang, Tanqiu Jiang, Ting Wang

2026-02-04

red teaming

2602.04448v1

How Few-shot Demonstrations Affect Prompt-based Defenses Against LLM Jailbreak Attacks

Yanshu Wang, Shuaishuai Yang, Jingjing He, Tong Yang

2026-02-04

red teaming safety

2602.04294v1

RAPO: Risk-Aware Preference Optimization for Generalizable Safe Reasoning

Zeming Wei, Qiaosheng Zhang, Xia Hu, Xingcheng Xu

2026-02-04

red teaming

2602.04224v1

The Missing Half: Unveiling Training-time Implicit Safety Risks Beyond Deployment

Zhexin Zhang, Yida Lu, Junfeng Fang, Junxiao Yang, Shiyao Cui, Hao Zhou, Fandong Meng, Jie Zhou, Hongning Wang, Minlie Huang, Tat-Seng Chua

2026-02-04

2602.04196v1

WebSentinel: Detecting and Localizing Prompt Injection Attacks for Web Agents

Xilong Wang, Yinuo Liu, Zhun Wang, Dawn Song, Neil Gong

2026-02-03

red teaming

2602.03792v1

Steering Externalities: Benign Activation Steering Unintentionally Increases Jailbreak Risk for Large Language Models

Chen Xiong, Zhiyuan He, Pin-Yu Chen, Ching-Yun Ko, Tsung-Yi Ho

2026-02-03

red teaming

2602.04896v1

Risk Awareness Injection: Calibrating Vision-Language Models for Safety without Compromising Utility

Mengxuan Wang, Yuxin Chen, Gang Xu, Tao He, Hongjie Jiang, Ming Li

2026-02-03

red teaming

2602.03402v1

Beyond Suffixes: Token Position in GCG Adversarial Attacks on Large Language Models

Hicham Eddoubi, Umar Faruk Abdullahi, Fadi Hassan

2026-02-03

red teaming

2602.03265v1

Is It Possible to Make Chatbots Virtuous? Investigating a Virtue-Based Design Methodology Applied to LLMs

Matthew P. Lad, Louisa Conwill, Megan Levis Scheirer

2026-02-03

2602.03155v1

AgentDyn: A Dynamic Open-Ended Benchmark for Evaluating Prompt Injection Attacks of Real-World Agent Security System

Hao Li, Ruoyao Wen, Shanghao Shi, Ning Zhang, Chaowei Xiao

2026-02-03

red teaming

2602.03117v2

AgentDyn: A Dynamic Open-Ended Benchmark for Evaluating Prompt Injection Attacks of Real-World Agent Security System

Hao Li, Ruoyao Wen, Shanghao Shi, Ning Zhang, Chaowei Xiao

2026-02-03

red teaming

2602.03117v1

Monotonicity as an Architectural Bias for Robust Language Models

Patrick Cooper, Alireza Nadali, Ashutosh Trivedi, Alvaro Velasquez

2026-02-02

2602.02686v1

David vs. Goliath: Verifiable Agent-to-Agent Jailbreaking via Reinforcement Learning

Samuel Nellessen, Tal Kachman

2026-02-02

red teaming

2602.02395v1

February 02 - February 08, 2026

Detecting Misbehaviors of Large Vision-Language Models by Evidential Uncertainty Quantification

Clouding the Mirror: Stealthy Prompt Injection Attacks Targeting LLM-based Phishing Detection

Causal Front-Door Adjustment for Robust Jailbreak Attacks on LLMs

Causal Front-Door Adjustment for Robust Jailbreak Attacks on LLMs

Copyright Detective: A Forensic System to Evidence LLMs Flickering Copyright Leakage Risks

Copyright Detective: A Forensic System to Evidence LLMs Flickering Copyright Leakage Risks

Bypassing AI Control Protocols via Agent-as-a-Proxy Attacks

Bypassing AI Control Protocols via Agent-as-a-Proxy Attacks

Trust The Typical

LLM as a Risk Manager: LLM Semantic Filtering for Lead-Lag Trading in Prediction Markets

The Supportiveness-Safety Tradeoff in LLM Well-Being Agents

RASA: Routing-Aware Safety Alignment for Mixture-of-Experts Models

How Few-shot Demonstrations Affect Prompt-based Defenses Against LLM Jailbreak Attacks

RAPO: Risk-Aware Preference Optimization for Generalizable Safe Reasoning

The Missing Half: Unveiling Training-time Implicit Safety Risks Beyond Deployment

WebSentinel: Detecting and Localizing Prompt Injection Attacks for Web Agents

Steering Externalities: Benign Activation Steering Unintentionally Increases Jailbreak Risk for Large Language Models

Risk Awareness Injection: Calibrating Vision-Language Models for Safety without Compromising Utility

Beyond Suffixes: Token Position in GCG Adversarial Attacks on Large Language Models

Is It Possible to Make Chatbots Virtuous? Investigating a Virtue-Based Design Methodology Applied to LLMs

AgentDyn: A Dynamic Open-Ended Benchmark for Evaluating Prompt Injection Attacks of Real-World Agent Security System

AgentDyn: A Dynamic Open-Ended Benchmark for Evaluating Prompt Injection Attacks of Real-World Agent Security System

Monotonicity as an Architectural Bias for Robust Language Models

David vs. Goliath: Verifiable Agent-to-Agent Jailbreaking via Reinforcement Learning