Prisonbreak: Jailbreaking large language models with fewer than twenty-five targeted bit-flips

representative citing papers

citing papers explorer

Showing 4 of 4 citing papers.

• GPUBreach: Privilege Escalation Attacks on GPUs using Rowhammer cs.CR · 2026-05-05 · unverdicted · none · ref 18

  Unprivileged CUDA kernels can use Rowhammer to tamper with GPU page tables for targeted privilege escalation, leaking cryptographic keys and escalating to CPU root access by bypassing IOMMU.

• CacheTrap: Unveiling a Stealthier Gray-Box Trojan against LLMs cs.CR · 2025-11-27 · conditional · none · ref 6

  CacheTrap achieves 100% targeted attack success on five open-source LLMs by using an efficient search to locate and flip a single bit in the KV cache as a transient trigger, while preserving normal accuracy without the trigger.

• Loaded Dice: Solving the Non-Selection Problem for Scalable Probabilistic RowHammer Defense cs.CR · 2026-05-17 · conditional · none · ref 13

  PrISM uses a Sampled History Queue to correlate row samples across windows, solving the non-selection problem in probabilistic RowHammer mitigation and cutting slowdown from 10.7% to 1.5% at threshold 250 versus prior methods.

• Jailbreaking the Matrix: Nullspace Steering for Controlled Model Subversion cs.CR · 2026-04-11 · unverdicted · none · ref 12

  HMNS is a new jailbreak method that uses causal head identification and nullspace-constrained injection to achieve higher attack success rates than prior techniques on aligned language models.