Stealing user prompts from mixture of experts

Itay Yona, Ilia Shumailov, Jamie Hayes, Nicholas Carlini · 2024 · arXiv 2410.22884

2 Pith papers cite this work. Polarity classification is still indexing.

2 Pith papers citing it

representative citing papers

Misrouter: Exploiting Routing Mechanisms for Input-Only Attacks on Mixture-of-Experts LLMs

cs.CR · 2026-05-06 · unverdicted · novelty 7.0

Misrouter enables input-only attacks on MoE LLMs by optimizing queries on open-source surrogates to route toward weakly aligned experts and transferring them to public APIs.

Quantamination: Dynamic Quantization Leaks Your Data Across the Batch

cs.CR · 2026-04-29 · conditional · novelty 7.0

Dynamic quantization creates side channels allowing partial or full recovery of other users' batched data in at least four popular ML frameworks.

citing papers explorer

Showing 2 of 2 citing papers.

Misrouter: Exploiting Routing Mechanisms for Input-Only Attacks on Mixture-of-Experts LLMs cs.CR · 2026-05-06 · unverdicted · none · ref 42
Misrouter enables input-only attacks on MoE LLMs by optimizing queries on open-source surrogates to route toward weakly aligned experts and transferring them to public APIs.
Quantamination: Dynamic Quantization Leaks Your Data Across the Batch cs.CR · 2026-04-29 · conditional · none · ref 1
Dynamic quantization creates side channels allowing partial or full recovery of other users' batched data in at least four popular ML frameworks.

Stealing user prompts from mixture of experts

fields

years

verdicts

representative citing papers

citing papers explorer