Standalone, indexable summaries of our work. Each links out to the full report on Substack — the canonical, full-text host. Tagged against the OWASP LLM Top-10 and MITRE ATLAS taxonomies.
An empirical study of indirect prompt injection via RAG poisoning in a SOC analyst scenario, finding that retrieval — not model alignment — is the load-bearing security control.