TechniquepersistenceATLAS

AML.T0070RAG Poisoning

What it is

Adversaries may inject malicious content into data indexed by a retrieval augmented generation (RAG) system to contaminate a future thread through RAG-based search results. This may be accomplished by placing manipulated documents in a location the RAG indexes (see [Gather RAG-Indexed Targets](/techniques/AML.T0064)). The content may be targeted such that it would always surface as a search result for a specific user query. The adversary's content may include false or misleading information. It may also include prompt injections with malicious instructions, or false RAG entries.

References

  1. https://atlas.mitre.org/techniques/AML.T0070

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

ATLAS
False RAG Entry Injection
ATLAS
Gather RAG-Indexed Targets
ATLAS
AI Agent Tool Data Poisoning
ATLAS
Retrieval Content Crafting
ATLAS
RAG Credential Harvesting
ATLAS
AI Agent Context Poisoning
Sourced from MITRE ATLAS — Adversarial Threat Landscape for AI Systems. Curated by Adam Lundqvist, SQUR.