RAG Injection
Type: technique
Description: The adversary abuses spotlightning defense techniques to inject a new RAG result providing fake legitimacy to data under their control.
Version: 0.1.0
Created At: 2024-10-11 16:54:32 +0300
Last Modified At: 2024-10-11 16:54:32 +0300
External References
Related Objects
- --> Defense Evasion (tactic): An adversary can inject RAG results that are treated by the AI system as authentic.
- --> Tamir Ishay Sharbat (entity): Demonstrated by
- <-- Financial Transaction Hijacking With M365 Copilot As An Insider (procedure): Inject a new RAG result to ensure copilot does not reference or confuse the malicious email with the newly provided malicious data.
- <-- Copilot M365 Lures Victims Into a Phishing Site (procedure): Inject a new RAG result to ensure copilot does not reference or confuse the malicious email with the newly provided malicious data.