Record summary
A quick snapshot of what this page covers.
Attack context
How this AI attack works in practice.
Adversaries may spam the AI system with chaff data that causes increase in the number of detections. This can cause analysts at the victim organization to waste time reviewing and correcting incorrect inferences.
Adversaries may also spam AI agents with excessive low-severity auditable events or agentic actions that require a human-in-the-loop, wasting time for the victim organization in human review of the agentic AI system.
- ATLAS ID
- AML.T0046
- Priority score
- 16
Mitigations
Defenses that may help against this attack.
AML.M0019 - Control Access to AI Models and Data in Production
Authentication on production models can help prevent anonymous chaff data spam.
AML.M0004 - Restrict Number of AI Model Queries
Limit the number of queries users can perform in a given interval to protect the system from chaff data spam.
Case studies
Examples from public reports and exercises.
Source
Where this page information comes from.
Original source
Original source links
Open the public records and source datasets used for this page.