
Sleeper Agents: The Backdoor Safety Training Can't
Red TeamAnthropic's Sleeper Agents shows a planted backdoor can survive SFT, RL, and adversarial training — breaking the assumption that a safety fine-tune…

Anthropic's Sleeper Agents shows a planted backdoor can survive SFT, RL, and adversarial training — breaking the assumption that a safety fine-tune…

Planting instructions in a retrieved document turns your RAG pipeline into an exfiltration channel.

A gradient-tuned nonsense string trained on open models breaks closed ones too. Here's the mechanism — and what actually blunts it.

Indirect prompt injection to data exfiltration is a real, chainable path in MITRE ATLAS.

OWASP put supply chain and model poisoning in its LLM Top 10 for a reason. Most threat models still treat them as a dependency-scan checkbox.
We use only strictly-necessary cookies by default. Non-essential (analytics/ads) cookies stay off until you accept.
Cookie Policy Privacy Policy