Breaking Models AI Security

Breaking Models AI Security

About This Event

Two talks this week. One closes a loop, one opens a rabbit hole. Part 1 — Prompt Injection Defenses: What Works, What’s Theater (Arshi Chadha, Senior Cybersecurity Engineer, Zscaler, 20 min) Last session: 11 attack classes, CVEs. This session: the defense side. Which mitigations actually hold up, which ones just feel safe, and why “add a better system prompt” isn’t a strategy. Part 2 — Before the Model Answers (Sagnik Nath, Asst Professor, Computer Science, UC Santa Cruz) Your prompts are now fixed. Cool. Meanwhile, the inference backend is reusing cached states, fuzzy matching old answers, and trusting hashes that were designed for speed, but not security. This talk explores how prefix, semantic, and multimodal caches can be poisoned to alter responses, hide malicious inputs, and bypass LLM-based audits in shared serving systems. We will examine attacks demonstrated against frameworks such as vLLM and GPTCache, then discuss practical defenses for securing the cache layer. 📍 Hacker Dojo, Mountain View 🕕 2:30pm Same small-group format as last time. Bring a paper you’ve been chewing

See the rest of the description and register on Luma.

Share Event

Date & Time

Sunday, July 12, 2026

2:30 PM - 4:00 PM

Location

Hacker Dojo, 855 Maude Ave, Mountain View, CA 94043, USA