RAG Injection
Type: technique
Description: The adversary abuses spotlightning defense techniques to inject a new RAG result providing fake legitimacy to data under their control.
Version: 0.1.0
Created At: 2024-12-31 14:18:56 -0500
Last Modified At: 2024-12-31 14:18:56 -0500
External References
Related Objects
- --> Defense Evasion (tactic): An adversary can inject RAG results that are treated by the AI system as authentic.
- --> Tamir Ishay Sharbat (entity): Demonstrated by
- <-- Financial Transaction Hijacking With M365 Copilot As An Insider (procedure): Inject a new RAG result to ensure copilot does not reference or confuse the malicious email with the newly provided malicious data.
- <-- Copilot M365 Lures Victims Into a Phishing Site (procedure): Inject a new RAG result to ensure copilot does not reference or confuse the malicious email with the newly provided malicious data.