RecurGuard: Runtime Monitoring for Reasoning-Token Consumption Attacks 事件

RecurGuard: Runtime Monitoring for Reasoning-Token Consumption Attacks arXiv:2606.07968v1 Announce Type: cross Abstract: Reasoning-capable large language models can be induced to spend their generation budget on injected decoy tasks rather than answering the user's question, causing denial of service when no final answer is produced and denial of wallet when excess output tokens are billed. Input-side safety classifiers often miss these attacks because the injected prompts can appear syntactica