Biography

Hi there! I’m a PhD student at the Technion – Israel Institute of Technology. 🧑‍🎓

My research focuses on the secure integration of Generative AI (GenAI) into real-world infrastructure, especially Cyber-Physical-Human Systems (CPHS) that involve human-in-the-loop interactions, such as smart water networks and GenAI-powered virtual assistants. I introduced the concept of Promptware: a new class of inference-time threats that exploit GenAI models through malicious prompts. My work spans both offensive and defensive security domains, including attacks on RAG pipelines, multi-agent delegation protocols, and production-scale GenAI systems. I share these findings at leading security venues including Black Hat USA, Black Hat Europe, DEF CON, and SecTor.

In parallel, I explore how GenAI agents can be safely and effectively integrated into CPHS environments, such as water systems, to support real-time decision-making, anomaly detection, and human-machine collaboration.

Interests
  • Artificial Intelligence
  • GenAI
  • AI Security
  • Cyber-Physical Systems

Experience

 
 
 
 
 
Cornell-Tech
Research Summer Internship
Cornell-Tech
August 2023 – November 2023 New York
Researched the security implications of multi-modal Language Models and developed attack vector strategies.
 
 
 
 
 
Technion – Israel Institute of Technology
Teaching Assistance
Technion – Israel Institute of Technology
October 2022 – Present Israel

Excellent Instructor and Teaching Assitance in the courses:

      * Machine Learning in Portfolio Selection 
      * Big Data Gathering and Management Lab
      * Software Engineering 2 - MLOPs
      * Cognition in Information Visualization

Academic Research

Adar Peleg, Shaked Adi, Dvir Alsheich, Rom Himelstein, Amit LeVi, Stav Cohen, Avi Mendelson (2025). One Agent to Rule Them All: How One Malicious Agent Hijacks A2A System. Preprint.

SecTor 2025

Stav Cohen, Barak Fishbain, Mashor Housh (2025). WaCSim: A Water and Cyber Simulation Tool for Enhancing Cyber Security in Smart Water Systems. EWRI 2025.

Stav Cohen, Or Yair, Ben Nassi (2025). Invitation Is All You Need! Invoking Gemini for Workspace Agents with a Simple Google Calendar Invite. Preprint.

BlackHat USA 2025 DEFCON 2025 SecTor 2025 Google Security Blog

Stav Cohen, Barak Fishbain, Mashor Housh (2025). A Cyber-Physical Transformer For Intrusion Detection In Water Supply Networks. Under work.

Stav Cohen, Ron Bitton, Ben Nassi (2024). Unleashing Worms and Extracting Data: Escalating the Outcome of Attacks against RAG-based Inference in Scale and Severity Using Jailbreaking. Preprint.

ArXiv GitHub

Stav Cohen, Ron Bitton, Ben Nassi (2024). A Jailbroken GenAI Model Can Cause Substantial Harm: GenAI-powered Applications are Vulnerable to PromptWares. BlackHat Europe 24.

BlackHat24 Talk Youtube ArXiv Website Forbes Article Video GitHub

Stav Cohen, Barak Fishbain (2024). Advancing Metaverse's Experience Through Optimization Of Players' Decisions. IJIM Data Insights.

DOI

Stav Cohen, Ron Bitton, Ben Nassi (2024). ComPromptMized: Unleashing Zero-click Worms that Target GenAI-Powered Applications. Preprint.

ArXiv Website Wired Article Video GitHub