Neural attention distillation: Erasing backdoor triggers from deep neural networks

cs.CV · 2026-03-30 · unverdicted · novelty 8.0

FlowHijack is the first dynamics-aware backdoor attack on flow-matching VLAs that achieves high success rates with stealthy triggers while preserving benign performance and making malicious actions kinematically indistinguishable from normal ones.

cs.CR · 2026-02-06 · unverdicted · novelty 7.0

BadSNN injects backdoors into spiking neural networks by adversarially tuning LIF neuron hyperparameters and optimizing triggers, achieving higher attack success than prior data-poisoning methods while remaining robust to common defenses.

cs.CV · 2025-11-27 · conditional · novelty 7.0

GSPure removes watermarks from 3D Gaussian Splatting by isolating watermark Gaussians via view-dependent contributions and feature clustering, cutting watermark PSNR by up to 16.34 dB with under 1 dB scene quality loss.

cs.CR · 2026-05-26 · unverdicted · novelty 6.0

Landseer offers a containerized modular system to integrate and evaluate combinations of machine learning defenses, with an initial analysis of 35 defenses highlighting replicability challenges.

cs.CR · 2026-05-20 · unverdicted · novelty 6.0

MIST detects Trojaned DNN updates by measuring spectral deviations in pre-activation representations against a benign fine-tuning reference, achieving high accuracy across datasets and attacks after a single update.

cs.CR · 2026-04-27 · unverdicted · novelty 6.0

TIGS detects backdoor-induced attention collapse in LLMs and applies content-aware tail-risk screening plus intrinsic geometric smoothing to suppress attacks while preserving normal performance.

cs.LG · 2026-04-06 · unverdicted · novelty 5.0

A complete pipeline for federated unlearning via knowledge distillation for efficient removal and a GAN-integrated classifier for visual evaluation of forgetting capacity.