Jiali Wei

LLMs can be backdoored with nearly imperceptible style changes, turning them into sleeper agents that reliably deliver attacker-specified payloads even after deployment and against common defenses.