Researchers have developed a new framework called AgentGhost to identify backdoor vulnerabilities in multimodal large language model (MLLM)-powered mobile GUI agents. These agents, often used due to high fine-tuning costs, are susceptible to supply chain attacks. AgentGhost combines goal and interaction-level triggers to activate backdoors while maintaining task utility, achieving 99.7% attack accuracy with only 1% utility degradation in tests on mobile benchmarks. A proposed defense method reduced the attack accuracy to 22.1%. AI
IMPACT Highlights potential security risks in MLLM-powered agents, necessitating robust defenses for supply chain integrity.
RANK_REASON The cluster contains an academic paper detailing a new method for identifying vulnerabilities in AI systems. [lever_c_demoted from research: ic=1 ai=1.0]
AI-generated summary · Google Gemini · from 1 sources. How we write summaries →