You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
retrieval poisoning
About this tag
Retrieval poisoning is a security vulnerability where short, manipulated passages in user-generated web content can mislead deep-research AI agents. A May 2026 preprint from Cornell Tech researchers Tingwei Zhang, Harold Triedman, and Vitaly Shmatikov demonstrated that as few as 13 words in a Reddit-style comment can steer an AI agent's output. This technique exploits the retrieval step in AI search, making the model only as trustworthy as the pages it retrieves. The core issue is that AI search has recreated an old web-security problem: the easiest pages to manipulate are often the ones retrieved. This tag covers discussions of retrieval poisoning in the context of AI security, web content manipulation, and the integrity of AI-driven research tools on Windows platforms.
Cornell Tech researchers Tingwei Zhang, Harold Triedman, and Vitaly Shmatikov reported in a May 2026 preprint that deep-research AI agents can be steered by short poisoned passages placed in user-generated web content, including Reddit-style comments as short as roughly 13 words. The paper’s...