this post was submitted on 07 Jan 2026
15 points (100.0% liked)

Pulse of Truth

1933 readers
4 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 2 years ago
MODERATORS
krogoth@infosec.pub
15
Researchers Manipulate Stolen Data to Corrupt AI Models and Generate Inaccurate Outputs (cybersecuritynews.com)
submitted 2 weeks ago by lemmydev2@infosec.pub to c/pulse_of_truth@infosec.pub
1 comments fedilink hide all child comments
 

Researchers from the Chinese Academy of Sciences and Nanyang Technological University have introduced AURA, a novel framework to safeguard proprietary knowledge graphs in GraphRAG systems against theft and private exploitation. Published on arXiv just a week ago, the paper highlights how adulterating KGs with fake but plausible data renders stolen copies useless to attackers while […] The post Researchers Manipulate Stolen Data to Corrupt AI Models and Generate Inaccurate Outputs appeared first on Cyber Security News.

you are viewing a single comment's thread
view the rest of the comments
[–] riskable@programming.dev -1 points 2 weeks ago

Hide fake data in with your real data. Then, if an AI is trained (not just reading) that data, it will be poisoned.

Yeah, OK.

That's not how this works. That's not how any of this works.

Nobody is going to steal data specifically for training AI with it. They're going to use an existing AI model to analyze the data and it will notice and point out the problems with the poisoned set. Then the person analyzing the data will be like, "what the fuck is this garbage?" And delete it.

LLMs are mostly being trained with synthetic data these days anyway (which is interesting... These generated texts are so bizarre!). Generative image AI still needs images though but that's basically impossible to poison at this point because all the images go through pre-training to narrow down the bounding boxes (for the metadata) which negates any intentional poisoning. Furthermore, the image metadata databases are constantly in a state of pruning and improving. Trying to sneak a poisoned image into them is all but impossible except for academic stuff whcih... Well, why TF would you want to hurt the poor guy trying to write his PhD thesis that says, "AI is bad, here's why..."