Latest papers

3 papers
attack arXiv Apr 22, 2026 · 29d ago

Breaking MCP with Function Hijacking Attacks: Novel Threats for Function Calling and Agentic Models

Yannis Belkhiter, Giulio Zizzo, Sergio Maffeis et al. · IBM Research Europe · Trinity College Dublin +1 more

Gradient-based adversarial attack that hijacks LLM function calling by inserting optimized tokens into function descriptions to force invocation of attacker-chosen tools

Input Manipulation Attack Insecure Plugin Design Excessive Agency nlp
PDF
attack arXiv Jan 29, 2026 · Jan 2026

Stealthy Poisoning Attacks Bypass Defenses in Regression Settings

Javier Carnerero-Cano, Luis Muñoz-González, Phillippa Spencer et al. · IBM Research Europe · Imperial College London +3 more

Stealthy bilevel-optimization poisoning attacks bypass regression defenses; BayesClean uses Bayesian uncertainty to detect them

Data Poisoning Attack tabular
PDF
defense arXiv Sep 5, 2025 · Sep 2025

Verifiability and Privacy in Federated Learning through Context-Hiding Multi-Key Homomorphic Authenticators

Simone Bottoni, Giulio Zizzo, Stefano Braghin et al. · University of Insubria · IBM Research Europe

Homomorphic authenticator protocol lets FL clients cryptographically verify aggregator honesty without revealing individual model updates

Data Poisoning Attack federated-learning
PDF