Sean Yang

LLM agents are alarmingly susceptible to memory poisoning via conversational attacks, achieving 95% success rates even against agents with selective memory mechanisms.