[공지사항]을 빙자한 안부와 근황

Daily Arxiv

This is a page that curates AI-related papers published worldwide.
All content here is summarized using Google Gemini and operated on a non-profit basis.
Copyright for each paper belongs to the authors and their institutions; please make sure to credit the source when sharing.

Photonic Fabric Platform for AI Accelerators

Achieving Robust Channel Estimation Neural Networks by Designed Training Data

Can Mental Imagery Improve the Thinking Capabilities of AI Systems?

Characterizing State Space Model (SSM) and SSM-Transformer Hybrid Language Model Performance with Long Context Length

PGT-I: Scaling Spatiotemporal GNNs with Memory-Efficient Distributed Training

Robust 3D-Masked Part-level Editing in 3D Gaussian Splatting with Regularized Score Distillation Sampling

A Lightweight and Robust Framework for Real-Time Colorectal Polyp Detection Using LOF-Based Preprocessing and YOLO-v11n

HMID-Net: An Exploration of Masked Image Modeling and Knowledge Distillation in Hyperbolic Space

Synchronizing Task Behavior: Aligning Multiple Tasks during Test-Time Training

Resolving Token-Space Gradient Conflicts: Token Space Manipulation for Transformer-Based Multi-Task Learning

Fast Bilateral Teleoperation and Imitation Learning Using Sensorless Force Control via Accurate Dynamics Model

VisualSpeaker: Visually-Guided 3D Avatar Lip Synthesis

Reviving Cultural Heritage: A Novel Approach for Comprehensive Historical Document Restoration

Interaction-Merged Motion Planning: Effectively Leveraging Diverse Motion Datasets for Robust Planning

Learning Software Bug Reports: A Systematic Literature Review

Rethinking Data Protection in the (Generative) Artificial Intelligence Era

Frequency-Aligned Knowledge Distillation for Lightweight Spatiotemporal Forecasting

TopoStreamer: Temporal Lane Segment Topology Reasoning in Autonomous Driving

“Before, I Asked My Mom, Now I Ask ChatGPT”: Visual Privacy Management with Generative AI for Blind and Low-Vision People

QLPro: Automated Code Vulnerability Discovery via LLM and Static Code Analysis Integration

FedWSQ: Efficient Federated Learning with Weight Standardization and Distribution-Aware Non-Uniform Quantization

Plan for Speed: Dilated Scheduling for Masked Diffusion Language Models

Bridging the Digital Divide: Small Language Models as a Pathway for Physics and Photonics Education in Underdeveloped Regions

DaMO: A Data-Efficient Multimodal Orchestrator for Temporal Reasoning with Video LLMs

Dynamic Context Tuning for Retrieval-Augmented Generation: Enhancing Multi-Turn Planning and Tool Adaptation

Specification and Evaluation of Multi-Agent LLM Systems -- Prototype and Cybersecurity Applications

PhysioWave: A Multi-Scale Wavelet-Transformer for Physiological Signal Representation

Draft-based Approximate Inference for LLMs

Label-semantics Aware Generative Approach for Domain-Agnostic Multilabel Classification

SemiOccam: A Robust Semi-Supervised Image Recognition Network Using Sparse Labels

Adversarial bandit optimization for approximately linear functions

Know Or Not: a library for evaluating out-of-knowledge base robustness

Leveraging Vision-Language Models for Visual Grounding and Analysis of Automotive UI

DualReal: Adaptive Joint Training for Lossless Identity-Motion Fusion in Video Customization

CoordField: Coordination Field for Agentic UAV Task Allocation In Low-altitude Urban Scenarios

Return Capping: Sample-Efficient CVaR Policy Gradient Optimization

AnyTSR: Any-Scale Thermal Super-Resolution for UAV

Enhanced Pruning Strategy for Multi-Component Neural Architectures Using Component-Aware Graph Analysis

Executable Functional Abstractions: Inferring Generative Programs for Advanced Math Problems

Measuring Leakage in Concept-Based Methods: An Information Theoretic Approach

APIGen-MT: Agentic Pipeline for Multi-Turn Data Generation via Simulated Agent-Human Interplay

The Dual-Route Model of Induction

Detecting PTSD in Clinical Interviews: A Comparative Analysis of NLP Methods and Large Language Models

SWI: Speaking with Intent in Large Language Models

A Study of LLMs' Preferences for Libraries and Programming Languages

TruthLens: Explainable DeepFake Detection for Face Manipulated and Fully Synthetic Data

Sampling Decisions

Federated Continuous Instruction Tuning

Fine-Tuning Diffusion Generative Models via Rich Preference Optimization

BriLLM: Brain-inspired Large Language Model

Studying Classifier(-Free) Guidance From a Classifier-Centric Perspective

RealGeneral: Unifying Visual Generation via Temporal In-Context Learning with Video Models

Search-R1: Training LLMs to Reason and Leverage Search Engines with Reinforcement Learning

PLADIS: Pushing the Limits of Attention in Diffusion Models at Inference Time by Leveraging Sparsity

DynamicID: Zero-Shot Multi-ID Image Personalization with Flexible Facial Editability

Symbolic Mixture-of-Experts: Adaptive Skill-based Routing for Heterogeneous Reasoning

OMNISEC: LLM-Driven Provenance-based Intrusion Detection via Retrieval-Augmented Behavior Prompting

Too Much to Trust? Measuring the Security and Cognitive Impacts of Explainability in AI-Driven SOCs

Attend or Perish: Benchmarking Attention in Algorithmic Reasoning

Can Optical Denoising Clean Sonar Images? A Benchmark and Fusion Approach

Brain Foundation Models: A Survey on Advances in Neural Signal Processing and Brain Discovery

Winning Big with Small Models: Knowledge Distillation vs. Self-Training for Reducing Hallucination in Product QA Agents

Detecting Benchmark Contamination Through Watermarking

MEMERAG: A Multilingual End-to-End Meta-Evaluation Benchmark for Retrieval Augmented Generation

Steering into New Embedding Spaces: Analyzing Cross-Lingual Alignment Induced by Model Interventions in Multilingual Language Models

Analyze the Neurons, not the Embeddings: Understanding When and Where LLM Representations Align with Humans

MKE-Coder: Multi-Axial Knowledge with Evidence Verification in ICD Coding for Chinese EMRs

An Overall Real-Time Mechanism for Classification and Quality Evaluation of Rice

Layerwise Recall and the Geometry of Interwoven Knowledge in LLMs

Learning in Strategic Queuing Systems with Small Buffers

BARNN: A Bayesian Autoregressive and Recurrent Neural Network

HEPPO-GAE: Hardware-Efficient Proximal Policy Optimization with Generalized Advantage Estimation

CGP-Tuning: Structure-Aware Soft Prompt Tuning for Code Vulnerability Detection

A recent evaluation on the performance of LLMs on radiation oncology physics using questions of randomly shuffled options

A Survey on Large Language Model-Based Social Agents in Game-Theoretic Scenarios

PEMF-VTO: Point-Enhanced Video Virtual Try-on via Mask-free Paradigm

Understanding the Design Decisions of Retrieval-Augmented Generation Systems

DOGR: Towards Versatile Visual Document Grounding and Referring

Ev2R: Evaluating Evidence Retrieval in Automated Fact-Checking

DualSwinUnet++: An Enhanced Swin-Unet Architecture With Dual Decoders For PTMC Segmentation

PerspectiveNet: Multi-View Perception for Dynamic Scene Understanding

AlphaDPO: Adaptive Reward Margin for Direct Preference Optimization

Continual Learning with Neuromorphic Computing: Foundations, Methods, and Emerging Applications

FlexiTex: Enhancing Texture Generation via Visual Guidance

ASMA: An Adaptive Safety Margin Algorithm for Vision-Language Drone Navigation via Scene-Aware Control Barrier Functions

The unknotting numbers, hard unknot diagrams, and reinforcement learning

Hierarchical Reinforcement Learning for Temporal Abstraction of Listwise Recommendation

Enhancing Natural Language Inference Performance with Knowledge Graph for COVID-19 Automated Fact-Checking in Indonesian Language

CVPT: Cross Visual Prompt Tuning

Proficient Graph Neural Network Design by Accumulating Knowledge on Large Language Models

Stimulating Imagination: Towards General-purpose "Something Something Placement"

Why Does New Knowledge Create Messy Ripple Effects in LLMs?

A Mathematical Framework and a Suite of Learning Techniques for Neural-Symbolic Systems

How to Leverage Predictive Uncertainty Estimates for Reducing Catastrophic Forgetting in Online Continual Learning

Towards the Next Frontier in Speech Representation Learning Using Disentanglement

Hierarchical Prompting Taxonomy: A Universal Evaluation Framework for Large Language Models Aligned with Human Cognitive Principles

Which Experiences Are Influential for RL Agents? Efficiently Estimating The Influence of Experiences

Oversmoothing Alleviation in Graph Neural Networks: A Survey and Unified View

OCK: Unsupervised Dynamic Video Prediction with Object-Centric Kinematics

Benchmarking Mobile Device Control Agents across Diverse Configurations

Manipulating LLM Web Agents with Indirect Prompt Injection Attack via HTML Accessibility Tree

Created by

Haebom

Author

Sam Johnson, Viet Pham, Thai Le

Outline

This paper demonstrates that while LLM-based web crawling agents are powerful in their automation, they are vulnerable to indirect prompt injection (IPI) attacks. We demonstrate that an attacker can inject common adversarial triggers into the HTML of a web page to hijack the behavior of the agent parsing the HTML using the accessibility tree, thereby causing unintended or malicious behavior. Using the Greedy Coordinate Gradient (GCG) algorithm and a Browser Gym agent based on Llama-3.1, we demonstrate a system that achieves high success rates across both targeted and generic attacks (including login credential leaks and forced ad clicks) on real websites. The experimental results highlight significant security risks and the need for stronger defenses as LLM-based autonomous web agents become more widely adopted. The system software ( https://github.com/sej2020/manipulating-web-agents) is released under the MIT license, and a publicly accessible demo website ( http://lethaiq.github.io/attack-web-llm-agent) is also provided.

Takeaways, Limitations

•

Takeaways: Reveals security vulnerabilities in LLM-based web crawling agents and empirically demonstrates the dangers of indirect prompt injection attacks. Suggests the need for strengthening the security of LLM-based autonomous systems. Provides an important foundation for research on attack techniques and defense strategies. Easy reproducibility and verification of research results through open source software and demo websites.

•

Limitations: The current study may be limited to a specific LLM (Llama-3.1) and a specific type of web crawling agent that utilizes accessibility trees. Further research is needed on various LLM and web crawling strategies. Lack of specific discussion on the proposed defense strategies. May not fully reflect the complexity of real-world attack scenarios.

View PDF

Made with Slashpage