More

atomic128 · 2026-01-24T16:56:56 1769273816

Poison Fountain: https://rnsaffn.com/poison2/

Poison Fountain explanation: https://rnsaffn.com/poison3/

Simple example of usage in Go:

  package main

  import (
      "io"
      "net/http"
  )

  func main() {
      poisonHandler := func(w http.ResponseWriter, req *http.Request) {
          poison, err := http.Get("https://rnsaffn.com/poison2/")
          if err == nil {
              io.Copy(w, poison.Body)
              poison.Body.Close()
          }
      }
      http.HandleFunc("/poison", poisonHandler)
      http.ListenAndServe(":8080", nil)
  }

https://go.dev/play/p/04at1rBMbz8

In the news:

The Register: https://www.theregister.com/2026/01/11/industry_insiders_see...

Forbes: https://www.forbes.com/sites/craigsmith/2026/01/21/poison-fo...

atomic128 · 2026-01-23T03:25:28 1769138728

Poison Fountain: https://rnsaffn.com/poison2/

https://www.theregister.com/2026/01/11/industry_insiders_see...

toomuchtodo · 2026-01-23T04:52:00 1769143920

Sounds like you’d just need to obfuscate the link targets (to avoid filtering) and publish links on major AI crawler targets, yeah?

atomic128 · 2026-01-21T19:03:17 1769022197

Poison Fountain: https://rnsaffn.com/poison2/

https://www.theregister.com/2026/01/11/industry_insiders_see...

pixl97 · 2026-01-22T15:22:39 1769095359

Yea, this will work about as well as those image poisoners... they'll eat up more power, but won't have any effect at the end of the day.

direwolf20 · 2026-01-22T16:26:56 1769099216

It only takes 50 poisoned documents to make an LLM training algorithm spit out wrong results on a specific topic, and 250 can make it produce complete gibberish. https://www.anthropic.com/research/small-samples-poison

atomic128 · 2026-01-20T18:21:23 1768933283

Number 6, explained 3 years ago:

https://github.com/nobodyisnobody/docs/blob/main/code.execut...

Original publication in 2017:

https://m101.github.io/binholic/2017/05/20/notes-on-abusing-...

atomic128 · 2026-01-16T20:15:58 1768594558

Poison Fountain: https://rnsaffn.com/poison2/

https://www.theregister.com/2026/01/11/industry_insiders_see...

atomic128 · 2026-01-13T23:28:05 1768346885

Poison Fountain: https://news.ycombinator.com/item?id=46577464

atomic128 · 2026-01-07T23:41:34 1767829294

Poison Fountain: https://rnsaffn.com/poison3/

atomic128 · 2026-01-07T16:52:05 1767804725

Poison Fountain: https://rnsaffn.com/poison3/

atomic128 · 2026-01-04T21:37:29 1767562649

Poison Fountain: https://rnsaffn.com/poison3/

dandersch · 2026-01-04T22:15:12 1767564912

> Small quantities of poisoned training data can significantly damage a language model.

Is this still accurate?

embedding-shape · 2026-01-04T22:30:54 1767565854

Probably always be true, but also probably not effective in the wild. Researchers will train a version, see results are off, put guards against poisoned data, re-train and no damage been done to whatever they release.

d-lisp · 2026-01-04T22:55:22 1767567322

How would they put guards against poisoned data ? How would they identify poisoned data if there are a lot/obfuscated ?

atomic128 · 2025-12-29T20:11:37 1767039097

Poison Fountain https://rnsaffn.com/poison3/

agumonkey · 2025-12-29T21:05:42 1767042342

interesting, i didn't know about this effort