Zhang, Leo Yu

25 publications

NeurIPS 2025 AdvEDM: Fine-Grained Adversarial Attack Against VLM-Based Embodied Agents Yichen Wang, Hangtao Zhang, Hewen Pan, Ziqi Zhou, Xianlong Wang, Peijin Guo, Lulu Xue, Shengshan Hu, Minghui Li, Leo Yu Zhang

ICLR 2025 BadRobot: Jailbreaking Embodied LLM Agents in the Physical World Hangtao Zhang, Chenyu Zhu, Xianlong Wang, Ziqi Zhou, Changgan Yin, Minghui Li, Lulu Xue, Yichen Wang, Shengshan Hu, Aishan Liu, Peijin Guo, Leo Yu Zhang

ICML 2025 BiMark: Unbiased Multilayer Watermarking for Large Language Models Xiaoyan Feng, He Zhang, Yanjun Zhang, Leo Yu Zhang, Shirui Pan

AAAI 2025 Detecting and Corrupting Convolution-Based Unlearnable Examples Minghui Li, Xianlong Wang, Zhifei Yu, Shengshan Hu, Ziqi Zhou, Longling Zhang, Leo Yu Zhang

AAAI 2025 Improving Generalization of Universal Adversarial Perturbation via Dynamic Maximin Optimization Yechao Zhang, Yingzhe Xu, Junyu Shi, Leo Yu Zhang, Shengshan Hu, Minghui Li, Yanjun Zhang

NeurIPS 2025 MARS: A Malignity-Aware Backdoor Defense in Federated Learning Wei Wan, Ning Yuxuan, Zhicong Huang, Cheng Hong, Shengshan Hu, Ziqi Zhou, Yechao Zhang, Tianqing Zhu, Wanlei Zhou, Leo Yu Zhang

IJCAI 2025 MMGIA: Gradient Inversion Attack Against Multimodal Federated Learning via Intermodal Correlation Lele Zheng, Yang Cao, Leo Yu Zhang, Wei Wang, Yulong Shen, Xiaochun Cao

AAAI 2025 NumbOD: A Spatial-Frequency Fusion Attack Against Object Detectors Ziqi Zhou, Bowen Li, Yufei Song, Zhifei Yu, Shengshan Hu, Wei Wan, Leo Yu Zhang, Dezhong Yao, Hai Jin

IJCAI 2025 Performance Guaranteed Poisoning Attacks in Federated Learning: A Sliding Mode Approach Huazi Pan, Yanjun Zhang, Leo Yu Zhang, Scott D. Adams, Abbas Z. Kouzani, Suiyang Khoo

CVPR 2025 Test-Time Backdoor Detection for Object Detection Models Hangtao Zhang, Yichen Wang, Shihui Yan, Chenyu Zhu, Ziqi Zhou, Linshan Hou, Shengshan Hu, Minghui Li, Yanjun Zhang, Leo Yu Zhang

ECML-PKDD 2025 Uncertainty-Aware Metabolic Stability Prediction with Dual-View Contrastive Learning Peijin Guo, Minghui Li, Hewen Pan, Bowen Chen, Yang Wu, Zikang Guo, Leo Yu Zhang, Shengshan Hu, Shengqing Hu

NeurIPS 2025 Vanish into Thin Air: Cross-Prompt Universal Adversarial Attacks for SAM2 Ziqi Zhou, Yifan Hu, Yufei Song, Zijing Li, Shengshan Hu, Leo Yu Zhang, Dezhong Yao, Long Zheng, Hai Jin

AAAI 2024 Conditional Backdoor Attack via JPEG Compression Qiuyu Duan, Zhongyun Hua, Qing Liao, Yushu Zhang, Leo Yu Zhang

IJCAI 2024 DarkFed: A Data-Free Backdoor Attack in Federated Learning Minghui Li, Wei Wan, Yuxuan Ning, Shengshan Hu, Lulu Xue, Leo Yu Zhang, Yichen Wang

NeurIPS 2024 DarkSAM: Fooling Segment Anything Model to Segment Nothing Ziqi Zhou, Yufei Song, Minghui Li, Shengshan Hu, Xianlong Wang, Leo Yu Zhang, Dezhong Yao, Hai Jin

IJCAI 2024 Detector Collapse: Backdooring Object Detection to Catastrophic Overload or Blindness in the Physical World Hangtao Zhang, Shengshan Hu, Yichen Wang, Leo Yu Zhang, Ziqi Zhou, Xianlong Wang, Yanjun Zhang, Chao Chen

ICML 2024 IBD-PSC: Input-Level Backdoor Detection via Parameter-Oriented Scaling Consistency Linshan Hou, Ruili Feng, Zhongyun Hua, Wei Luo, Leo Yu Zhang, Yiming Li

AAAI 2024 Revisiting Gradient Pruning: A Dual Realization for Defending Against Gradient Attacks Lulu Xue, Shengshan Hu, Ruizhi Zhao, Leo Yu Zhang, Shengqing Hu, Lichao Sun, Dezhong Yao

AAAI 2024 Towards Model Extraction Attacks in GAN-Based Image Translation via Domain Shift Mitigation Di Mi, Yanjun Zhang, Leo Yu Zhang, Shengshan Hu, Qi Zhong, Haizhuan Yuan, Shirui Pan

IJCAI 2023 Denial-of-Service or Fine-Grained Control: Towards Flexible Model Poisoning Attacks on Federated Learning Hangtao Zhang, Zeming Yao, Leo Yu Zhang, Shengshan Hu, Chao Chen, Alan Wee-Chung Liew, Zhetao Li

ICCV 2023 Downstream-Agnostic Adversarial Examples Ziqi Zhou, Shengshan Hu, Ruizhi Zhao, Qian Wang, Leo Yu Zhang, Junhui Hou, Hai Jin

AAAI 2023 PointCA: Evaluating the Robustness of 3D Point Cloud Completion Models Against Adversarial Examples Shengshan Hu, Junwei Zhang, Wei Liu, Junhui Hou, Minghui Li, Leo Yu Zhang, Hai Jin, Lichao Sun

NeurIPS 2023 Towards Self-Interpretable Graph-Level Anomaly Detection Yixin Liu, Kaize Ding, Qinghua Lu, Fuyi Li, Leo Yu Zhang, Shirui Pan

CVPR 2022 Protecting Facial Privacy: Generating Adversarial Identity Masks via Style-Robust Makeup Transfer Shengshan Hu, Xiaogeng Liu, Yechao Zhang, Minghui Li, Leo Yu Zhang, Hai Jin, Libing Wu

IJCAI 2022 Shielding Federated Learning: Robust Aggregation with Adaptive Client Selection Wei Wan, Shengshan Hu, Jianrong Lu, Leo Yu Zhang, Hai Jin, Yuanyuan He