poisoning.ai

How to protect yourself and your work from AI

Honest, independent tests of the tools that protect your work by poisoning AI scrapers: what each one does, how it gets bypassed, and how long it holds.

Explainers

Can speech and ASR models be backdoored?

Yes. Speech recognition and spoken-language-understanding models can be backdoored at training time, with triggers as ordinary as a room's echo or a background alarm. What the demonstrated attacks show, and where their limits are.

#explainers#backdoors#asr#speech
04/07/2026
Explainers

Anti voice cloning tools compared

A neutral, pick-by-threat comparison of the tools that protect your voice from AI cloning, from AntiFake and DeFake to VoiceBlock, V-Cloak, VoiceCloak and the purification-resistant second generation.

#comparison#voice-protection#antifake#voice-cloning#tools
04/07/2026
Reliability

Do membership inference attacks work on LLMs?

On large language models, membership inference attacks usually land close to a coin flip, and the cases where they look successful often turn out to be measuring a distribution shift instead.

#reliability#membership-inference#llms#text
04/07/2026
Explainers

How effective are data-poisoning attacks?

In controlled studies, data-poisoning and backdoor attacks are strikingly effective and cheap, but the choices that make an attack potent tend to make it easier to detect. A neutral review of the tradeoff.

#explainers#data-poisoning#backdoors#review
04/07/2026
Reliability

How reliable is membership inference?

Membership inference is a real research method for testing whether a sample was in a model's training data, but on a production model it cannot give proof. Why a positive result is a suspicion, not evidence.

#reliability#membership-inference#training-data#proof
04/07/2026
Auditing

Was my music used to train AI? How to actually tell

There is no public tool that searches audio training sets for your songs, and even a positive membership-inference result is not proof. What you can and cannot establish for a track.

#auditing#membership-inference#training-data#music
04/07/2026
Auditing

Was my voice used to train AI? How to actually tell

There is no public tool that searches audio training sets for your voice, and even a positive membership-inference result is not proof. What you can and cannot establish.

#auditing#membership-inference#training-data#voice
04/07/2026
Explainers

Clean-label poisoning attacks, explained

A clean-label poison keeps the training label correct but alters the content, so a human reviewer sees nothing wrong while the model still learns the attacker's hidden association. How it differs from a dirty-label backdoor, and how stealthy it really is.

#clean-label#data-poisoning#backdoor#datasets#explainer
03/07/2026
Reliability

Does anti voice cloning work?

Anti voice cloning tools raise the bar, but a 2025 purification attack has already shown the protection can be stripped and the clone restored. The full picture.

#voice-cloning#antifake#de-antifake#voiceblock
03/07/2026
Reliability

Does Fawkes still work in 2026?

Fawkes worked in its 2020 tests, but whether it still hides your face from today's deployed face-search engines is genuinely unmeasured. The full picture.

#fawkes#lowkey#facial-recognition#cloaking
03/07/2026
Explainers

How backdoor attacks on neural networks work

A backdoor hides a rule in a model during training so it works normally until it sees the attacker's trigger. How that trigger gets in, what real backdoors look like across images and audio, and why they are so hard to spot.

#backdoor#data-poisoning#triggers#neural-networks#explainer
03/07/2026
Reliability

How to detect a backdoored model and defend against data poisoning

You can screen a model for backdoors, but no single test is reliable, so defenders layer model-side and data-side checks. What each defence catches, what beats it, and what actually works.

#backdoor-detection#defense#data-poisoning#model-security#reliability
03/07/2026
Reliability

LightShed explained

What LightShed actually does to Glaze and Nightshade, and why its famous 99.98% figure is a detection rate, not proof that art protection is finished.

#lightshed#nightshade#glaze#purification
03/07/2026
Reliability

Does music poisoning survive MP3, Suno, and MusicGen?

HarmonyCloak survives MP3 by design, but streaming codecs and the generators people name, Suno and MusicGen, are untested. What music poisoning is actually proven to survive.

#music#harmonycloak#mp3#suno#musicgen
02/07/2026
Explainers

How HarmonyCloak makes songs unlearnable

The mechanism behind HarmonyCloak: error-minimizing noise that drives a generator's training loss toward zero, so it learns nothing from your track. How it works, and where it stops.

#music#harmonycloak#unlearnable-audio#error-minimizing#generative-ai
02/07/2026
Explainers

Image cloaking for facial recognition: how it works

A face cloak adds an imperceptible perturbation that shifts your face's embedding so a recognizer matches you to the wrong identity. How that works, and where it breaks.

#facial-recognition#cloaking#adversarial-ml#embeddings#fawkes
02/07/2026
Explainers

AI art protection tools compared

A neutral comparison of AI art protection tools, Glaze, Mist, Nightshade, PhotoGuard and more, to help you pick the right one for what you need to protect.

#comparison#art-protection#glaze#tools
01/07/2026
Explainers

DeFake, AntiFake and Voice Guard, explained

DeFake and AntiFake are the same tool under two names, and 'Voice Guard' is a search term for the category, not one product. What the voice-protection tools actually are, and what each one does.

#voice-protection#antifake#defake#voice-cloning
01/07/2026
Explainers

Nightshade and Glaze alternatives

The main alternatives to Glaze and Nightshade: Mist, PhotoGuard, Anti-DreamBooth and the purification-resistant second generation, and what each one is for.

#alternatives#mist#photoguard#anti-dreambooth
30/06/2026
Reliability

Do AI poisoning and cloaking tools actually work?

An honest, tested scorecard of Glaze, Nightshade, Mist and more: what each defends against, what breaks it, and where the AI art-protection arms race stands.

#reliability#glaze#nightshade#overview
29/06/2026
Reliability

Can Glaze and Nightshade be bypassed?

How cheap methods like JPEG and upscaling strip first-gen art protections, what LightShed does to Nightshade, and which newer tools still resist in 2026.

#glaze#nightshade#lightshed#reliability
28/06/2026
Reliability

Does Glaze actually work in 2026?

What independent tests in 2026 show about whether Glaze and Nightshade actually work, and why an AI can often still copy a style they were meant to protect.

#glaze#nightshade#reliability
27/06/2026
Explainers

Glaze vs Nightshade: which protects your art?

Glaze cloaks your style defensively; Nightshade poisons the model offensively. How the two differ, when to use each, and why artists often run both at once.

#glaze#nightshade#comparison
25/06/2026
Explainers

Glaze and Nightshade, explained

What Glaze and Nightshade actually do to protect art from AI: Glaze cloaks your style so models copy it wrong; Nightshade poisons the data that trains them.

#glaze#nightshade#art-protection
24/06/2026