AI Case Studies

SesameOp: Novel backdoor uses OpenAI Assistants API for command and control - AI Case Study

AI security case study AML.CS0042; type: incident; date: 2025-07-01; target: OpenAI Assistants API; actor: Unknown Threat Actor; 1 case steps

Compromised PyTorch Dependency Chain - AI Case Study

AI security case study AML.CS0015; type: incident; date: 2022-12-25; target: PyTorch; actor: Unknown; 3 case steps

GPT-2 Model Replication - AI Case Study

AI security case study AML.CS0007; type: exercise; date: 2019-08-22; target: OpenAI GPT-2; actor: Researchers at Brown University; 5 case steps

ClearviewAI Misconfiguration - AI Case Study

AI security case study AML.CS0006; type: incident; date: 2020-04-16; target: Clearview AI facial recognition tool; actor: Researchers at spiderSilk; 4 case s...

Indirect Prompt Injection Threats: Bing Chat Data Pirate - AI Case Study

AI security case study AML.CS0020; type: exercise; date: 2023-01-01; target: Microsoft Bing Chat; actor: Kai Greshake, Saarland University; 5 case steps

Bypassing ID.me Identity Verification - AI Case Study

AI security case study AML.CS0017; type: incident; date: 2020-10-01; target: California Employment Development Department; actor: One individual; 3 case steps

Google Bard Conversation Exfiltration - AI Case Study

AI security case study AML.CS0029; type: exercise; date: 2023-11-23; target: Google Bard; actor: Embrace the Red; 7 case steps

Hacking ChatGPT’s Memories with Prompt Injection - AI Case Study

AI security case study AML.CS0040; type: exercise; date: 2024-02-01; target: OpenAI ChatGPT; actor: Embrace the Red; 7 case steps

Attempted Evasion of ML Phishing Webpage Detection System - AI Case Study

AI security case study AML.CS0032; type: incident; date: 2022-12-01; target: Commercial ML Phishing Webpage Detector; actor: Unknown; 4 case steps

OpenClaw 1-Click Remote Code Execution - AI Case Study

AI security case study AML.CS0050; type: exercise; date: 2026-02-01; target: OpenClaw; actor: DepthFirst; 9 case steps

Data Exfiltration from Slack AI via Indirect Prompt Injection - AI Case Study

AI security case study AML.CS0035; type: exercise; date: 2024-08-20; target: Slack AI; actor: PromptArmor; 8 case steps

Malicious Models on Hugging Face - AI Case Study

AI security case study AML.CS0031; type: incident; date: 2025-02-25; target: Hugging Face users; actor: Unknown; 6 case steps

Model Distillation Campaigns Targeting Anthropic Claude - AI Case Study

AI security case study AML.CS0056; type: incident; date: 2026-02-23; target: Anthropic Claude; actor: DeepSeek, Moonshot AI, MiniMax; 7 case steps

Tay Poisoning - AI Case Study

AI security case study AML.CS0009; type: incident; date: 2016-03-23; target: Microsoft's Tay AI Chatbot; actor: 4chan Users; 4 case steps

LAMEHUG: Malware Leveraging Dynamic AI-Generated Commands - AI Case Study

AI security case study AML.CS0044; type: incident; date: 2025-06-03; target: Ukraine’s security and defense sector; actor: APT28; 8 case steps

LLM Jacking - AI Case Study

AI security case study AML.CS0030; type: incident; date: 2024-05-06; target: Cloud-Based LLM Services; actor: Unknown; 7 case steps

Microsoft Edge AI Evasion - AI Case Study

AI security case study AML.CS0011; type: exercise; date: 2020-02-01; target: New Microsoft AI Product; actor: Azure Red Team; 5 case steps

Camera Hijack Attack on Facial Recognition System - AI Case Study

AI security case study AML.CS0004; type: incident; date: 2020-01-01; target: Shanghai government tax office's facial recognition service; actor: Two individu...

Rules File Backdoor: Supply Chain Attack on AI Coding Assistants - AI Case Study

AI security case study AML.CS0041; type: exercise; date: 2025-03-18; target: Cursor, GitHub Copilot; actor: Pillar Security; 9 case steps

Planting Instructions for Delayed Automatic AI Agent Tool Invocation - AI Case Study

AI security case study AML.CS0038; type: exercise; date: 2024-02-01; target: Google Gemini; actor: Embrace the Red; 6 case steps