Resource Poisoning

Type: technique

Description: The adversary embeds malicious instructions within a document the user has access to, thereby infecting future threads that would discover this document through RAG-based search.

Version: 0.1.0

Created At: 2024-10-11 16:54:32 +0300

Last Modified At: 2024-10-11 16:54:32 +0300

External References

Related Objects

• --> Persistence (tactic): An adversary can infect future threads by injecting a malicious document into data indexed by a RAG system.
• --> RAG Poisoning (technique): Resource Poisoning is a form of RAG Poisoning, targeting future threads of the same user.

Related Frameworks