{"id":1040,"date":"2026-05-25T03:30:35","date_gmt":"2026-05-24T18:30:35","guid":{"rendered":"https:\/\/itexplore.org\/jp\/columns\/ai-security-advances-new-threats-robotic-industrial-applications\/"},"modified":"2026-05-25T03:30:35","modified_gmt":"2026-05-24T18:30:35","slug":"ai-security-advances-new-threats-robotic-industrial-applications","status":"publish","type":"post","link":"https:\/\/itexplore.org\/jp\/columns\/ai-security-advances-new-threats-robotic-industrial-applications\/","title":{"rendered":"AI\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u9032\u5c55\u3068\u65b0\u305f\u306a\u8105\u5a01\u3001\u30ed\u30dc\u30c3\u30c8\u306e\u7523\u696d\u5fdc\u7528"},"content":{"rendered":"<p>\u672c\u65e5\u306e\u6ce8\u76eeAI\u30fb\u30c6\u30c3\u30af\u30cb\u30e5\u30fc\u30b9\u3092\u3001\u5c02\u9580\u7684\u306a\u5206\u6790\u3068\u5171\u306b\u304a\u5c4a\u3051\u3057\u307e\u3059\u3002<\/p>\n<div class=\"wp-block-vk-blocks-alert vk_alert alert alert-warning has-alert-icon\">\n<div class=\"vk_alert_icon\">\n<div class=\"vk_alert_icon_icon\"><i class=\"fa-solid fa-triangle-exclamation\" aria-hidden=\"true\"><\/i><\/div>\n<div class=\"vk_alert_icon_text\"><span>Warning<\/span><\/div>\n<\/div>\n<div class=\"vk_alert_content\">\n<p>\u3053\u306e\u8a18\u4e8b\u306fAI\u306b\u3088\u3063\u3066\u81ea\u52d5\u751f\u6210\u30fb\u5206\u6790\u3055\u308c\u305f\u3082\u306e\u3067\u3059\u3002AI\u306e\u6027\u8cea\u4e0a\u3001\u4e8b\u5b9f\u8aa4\u8a8d\u304c\u542b\u307e\u308c\u308b\u53ef\u80fd\u6027\u304c\u3042\u308b\u305f\u3081\u3001\u91cd\u8981\u306a\u5224\u65ad\u3092\u4e0b\u3059\u969b\u306f\u5fc5\u305a\u30ea\u30f3\u30af\u5148\u306e\u4e00\u6b21\u30bd\u30fc\u30b9\u3092\u3054\u78ba\u8a8d\u304f\u3060\u3055\u3044\u3002<\/p>\n<\/div>\n<\/div>\n<div class=\"wp-block-group\" style=\"margin-top:40px;margin-bottom:40px\">\n<h2 class=\"wp-block-heading\">\u30d7\u30ed\u30b8\u30a7\u30af\u30c8\u30fb\u30b0\u30e9\u30b9\u30a6\u30a3\u30f3\u30b0\uff1a\u521d\u671f\u306e\u9032\u6357\u5831\u544a<\/h2>\n<ul>\n<li><strong>\u539f\u984c:<\/strong> Project Glasswing: An initial update<\/li>\n<\/ul>\n<h3 class=\"wp-block-heading\">\u5c02\u9580\u30a2\u30ca\u30ea\u30b9\u30c8\u306e\u5206\u6790<\/h3>\n<div class=\"ai-summary-content\">\n<p><strong>Anthropic<\/strong>\u306e\u300c<strong>Project Glasswing<\/strong>\u300d\u306f\u3001AI\u30e2\u30c7\u30eb\u304c\u60aa\u7528\u3055\u308c\u308b\u524d\u306b\u91cd\u8981\u306a\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u3092\u4fdd\u8b77\u3059\u308b\u305f\u3081\u306e\u5171\u540c\u4f5c\u696d\u3067\u3059\u3002\u3053\u306e\u30d7\u30ed\u30b8\u30a7\u30af\u30c8\u3067\u306f\u3001<strong>Claude Mythos Preview<\/strong>\u3092\u4f7f\u7528\u3057\u3066\u3001\u4e16\u754c\u3067\u6700\u3082\u91cd\u8981\u306a\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u304b\u30891\u4e07\u4ef6\u4ee5\u4e0a\u306e\u9ad8\u307e\u305f\u306f\u91cd\u5927\u306a\u8106\u5f31\u6027\u3092\u767a\u898b\u3057\u307e\u3057\u305f\u3002\u4ee5\u524d\u306f\u8106\u5f31\u6027\u306e\u767a\u898b\u901f\u5ea6\u304c\u8ab2\u984c\u3067\u3057\u305f\u304c\u3001\u73fe\u5728\u306fAI\u306b\u3088\u3063\u3066\u767a\u898b\u3055\u308c\u305f\u591a\u6570\u306e\u8106\u5f31\u6027\u306e\u691c\u8a3c\u3001\u958b\u793a\u3001\u30d1\u30c3\u30c1\u9069\u7528\u304c\u30dc\u30c8\u30eb\u30cd\u30c3\u30af\u3068\u306a\u3063\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>\u521d\u671f\u306e\u7d50\u679c\u3068\u3057\u3066\u3001<strong>Cloudflare<\/strong>\u306f2,000\u4ef6\u306e\u30d0\u30b0\uff08\u3046\u3061400\u4ef6\u304c\u9ad8\u307e\u305f\u306f\u91cd\u5927\u306a\u8106\u5f31\u6027\uff09\u3092\u767a\u898b\u3057\u3001<strong>Mozilla<\/strong>\u306f<strong>Firefox 150<\/strong>\u3067271\u4ef6\u306e\u8106\u5f31\u6027\u3092\u4fee\u6b63\u3057\u307e\u3057\u305f\u3002\u3053\u308c\u306f\u3001\u4ee5\u524d\u306e<strong>Claude Opus 4.6<\/strong>\u3068\u6bd4\u8f03\u3057\u306610\u500d\u4ee5\u4e0a\u306e\u767a\u898b\u7387\u3067\u3059\u3002\u307e\u305f\u3001<strong>Mythos Preview<\/strong>\u306f\u3001\u82f1\u56fd\u306eAI\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u7814\u7a76\u6240\u306e\u30b5\u30a4\u30d0\u30fc\u30ec\u30f3\u30b8\u3092\u30a8\u30f3\u30c9\u30c4\u30fc\u30a8\u30f3\u30c9\u3067\u89e3\u6c7a\u3057\u305f\u521d\u306e\u30e2\u30c7\u30eb\u3067\u3042\u308a\u3001<strong>XBOW<\/strong>\u3084\u5b66\u8853\u30d9\u30f3\u30c1\u30de\u30fc\u30af\u3067\u3082\u512a\u308c\u305f\u6027\u80fd\u3092\u793a\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>Anthropic\u306f\u30011,000\u4ee5\u4e0a\u306e\u30aa\u30fc\u30d7\u30f3\u30bd\u30fc\u30b9\u30d7\u30ed\u30b8\u30a7\u30af\u30c8\u3092\u30b9\u30ad\u30e3\u30f3\u3057\u3001\u63a8\u5b9a6,202\u4ef6\u306e\u9ad8\u307e\u305f\u306f\u91cd\u5927\u306a\u8106\u5f31\u6027\u3092\u7279\u5b9a\u3057\u307e\u3057\u305f\u3002\u3053\u308c\u3089\u306e\u3046\u3061\u30011,752\u4ef6\u304c\u72ec\u7acb\u3057\u305f\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u7814\u7a76\u6a5f\u95a2\u306b\u3088\u3063\u3066\u8a55\u4fa1\u3055\u308c\u300190.6%\u304c\u6709\u52b9\u306a\u771f\u967d\u6027\u3067\u3042\u308b\u3053\u3068\u304c\u78ba\u8a8d\u3055\u308c\u307e\u3057\u305f\u3002\u3053\u306e\u30d7\u30ed\u30b8\u30a7\u30af\u30c8\u306f\u3001\u8106\u5f31\u6027\u306e\u767a\u898b\u304c\u5bb9\u6613\u306b\u306a\u3063\u305f\u4e00\u65b9\u3067\u3001\u4eba\u9593\u306b\u3088\u308b\u30c8\u30ea\u30a2\u30fc\u30b8\u3001\u5831\u544a\u3001\u30d1\u30c3\u30c1\u8a2d\u8a08\u3001\u5c55\u958b\u306e\u80fd\u529b\u304c\u30dc\u30c8\u30eb\u30cd\u30c3\u30af\u3068\u306a\u3063\u3066\u3044\u308b\u3053\u3068\u3092\u6d6e\u304d\u5f6b\u308a\u306b\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>Anthropic\u306f\u3001<strong>Claude Security<\/strong>\u3092<strong>Claude Enterprise<\/strong>\u9867\u5ba2\u5411\u3051\u306b\u30d9\u30fc\u30bf\u7248\u3068\u3057\u3066\u30ea\u30ea\u30fc\u30b9\u3057\u3001\u30b3\u30fc\u30c9\u30d9\u30fc\u30b9\u306e\u30b9\u30ad\u30e3\u30f3\u3068\u4fee\u6b63\u6848\u306e\u751f\u6210\u3092\u652f\u63f4\u3057\u3066\u3044\u307e\u3059\u3002\u307e\u305f\u3001<strong>Cyber Verification Program<\/strong>\u3092\u901a\u3058\u3066\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5c02\u9580\u5bb6\u304c\u7279\u5b9a\u306e\u5b89\u5168\u5bfe\u7b56\u306a\u3057\u306b\u30e2\u30c7\u30eb\u3092\u4f7f\u7528\u3067\u304d\u308b\u3088\u3046\u306b\u3057\u3066\u3044\u307e\u3059\u3002\u5c06\u6765\u7684\u306b\u306f\u3001\u3088\u308a\u5f37\u529b\u306a\u5b89\u5168\u5bfe\u7b56\u3092\u958b\u767a\u3057\u305f\u5f8c\u3001<strong>Mythos\u30af\u30e9\u30b9\u306e\u30e2\u30c7\u30eb<\/strong>\u3092\u4e00\u822c\u516c\u958b\u3059\u308b\u3053\u3068\u3092\u76ee\u6307\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>\ud83d\udc49 <strong><a href=\"https:\/\/www.anthropic.com\/research\/glasswing-initial-update\" target=\"_blank\" rel=\"noopener\">Anthropic \u3067\u8a18\u4e8b\u5168\u6587\u3092\u8aad\u3080<\/a><\/strong><\/p>\n<\/div>\n<ul>\n<li><strong>\u8981\u70b9:<\/strong> AI models like Anthropic's Mythos Preview are dramatically accelerating the discovery of software vulnerabilities, shifting the cybersecurity bottleneck from finding bugs to the human capacity for verifying, disclosing, and patching them, necessitating faster patch cycles and enhanced defensive strategies.<\/li>\n<li><strong>\u8457\u8005:<\/strong> Editorial Staff<\/li>\n<\/ul>\n<blockquote class=\"wp-block-quote\"><p><span>English Summary:<\/span><\/p>\n<p><strong>Anthropic's Project Glasswing<\/strong> is a collaborative effort aimed at securing critical software before increasingly capable AI models can be weaponized against it. The project has leveraged <strong>Claude Mythos Preview<\/strong> to identify over ten thousand high- or critical-severity vulnerabilities across the world's most systemically important software. While vulnerability discovery was once the limiting factor, the bottleneck has now shifted to the verification, disclosure, and patching of the vast number of vulnerabilities found by AI.<\/p>\n<p>Initial results show significant impact, with partners like <strong>Cloudflare<\/strong> finding 2,000 bugs (400 high- or critical-severity) and <strong>Mozilla<\/strong> fixing 271 vulnerabilities in <strong>Firefox 150<\/strong>, a more than tenfold increase compared to findings with <strong>Claude Opus 4.6<\/strong>. <strong>Mythos Preview<\/strong> is also the first model to solve both of the UK's AI Security Institute's cyber ranges end-to-end and has demonstrated superior performance on benchmarks like <strong>XBOW<\/strong> and academic exploit development tests.<\/p>\n<p>Anthropic has also scanned over 1,000 open-source projects, identifying an estimated 6,202 high- or critical-severity vulnerabilities. Of these, 1,752 have been assessed by independent security firms, with 90.6% confirmed as valid true positives. The project highlights that while finding vulnerabilities has become significantly easier with AI, the human capacity for triage, reporting, and patch development and deployment remains a critical bottleneck.<\/p>\n<p>To address this, Anthropic has released <strong>Claude Security<\/strong> in public beta for <strong>Claude Enterprise<\/strong> customers, assisting teams in scanning codebases and generating proposed fixes. They have also launched a <strong>Cyber Verification Program<\/strong>, allowing security professionals to use their models for legitimate cybersecurity purposes without certain safeguards. Anthropic aims to release <strong>Mythos-class models<\/strong> more broadly in the future, once stronger safeguards against misuse are developed.<\/p>\n<\/blockquote>\n<\/div>\n<div class=\"wp-block-group\" style=\"margin-top:40px;margin-bottom:40px\">\n<h2 class=\"wp-block-heading\">\u6570\u5343\u4eba\u304c\u30ed\u30dc\u30c3\u30c8\u304c\u4f55\u6642\u9593\u3082\u30ce\u30f3\u30b9\u30c8\u30c3\u30d7\u3067\u8377\u7269\u3092\u4ed5\u5206\u3051\u308b\u69d8\u5b50\u3092\u30e9\u30a4\u30d6\u3067\u8996\u8074\u3002\u305d\u308c\u306f\u3001\u6a5f\u68b0\u304c\u4eba\u9593\u3088\u308a\u3082\u512a\u308c\u305f\u4ed5\u4e8b\u3092\u3059\u308b\u65b9\u6cd5\u3092\u5b66\u7fd2\u3059\u308b\u521d\u306e\u30d0\u30a4\u30e9\u30eb\u914d\u4fe1\u3060\u3063\u305f\u304b\u3082\u3057\u308c\u306a\u3044<\/h2>\n<ul>\n<li><strong>\u539f\u984c:<\/strong> Thousands of people watched live as a robot sorted packages for hours without stopping. And perhaps that was the first viral broadcast of a machine learning to do human jobs better than us<\/li>\n<\/ul>\n<h3 class=\"wp-block-heading\">\u5c02\u9580\u30a2\u30ca\u30ea\u30b9\u30c8\u306e\u5206\u6790<\/h3>\n<div class=\"ai-summary-content\">\n<p><strong>Figure AI<\/strong>\u306f\u3001\u4eba\u9593\u578b\u30ed\u30dc\u30c3\u30c8\u304c\u30b3\u30f3\u30d9\u30a2\u30d9\u30eb\u30c8\u306e\u524d\u3067\u4f55\u6642\u9593\u3082\u30d1\u30c3\u30b1\u30fc\u30b8\u3092\u5206\u985e\u3059\u308b\u69d8\u5b50\u3092\u30e9\u30a4\u30d6\u30b9\u30c8\u30ea\u30fc\u30df\u30f3\u30b0\u3057\u3001\u6570\u767e\u4e07\u4eba\u306e\u8996\u8074\u8005\u3092\u96c6\u3081\u307e\u3057\u305f\u3002\u3053\u306e\u30c7\u30e2\u30f3\u30b9\u30c8\u30ec\u30fc\u30b7\u30e7\u30f3\u306f\u3001\u30ed\u30dc\u30c3\u30c8\u304c\u30d1\u30eb\u30af\u30fc\u30eb\u3084\u30c0\u30f3\u30b9\u306e\u3088\u3046\u306a\u6d3e\u624b\u306a\u52d5\u304d\u3067\u306f\u306a\u304f\u3001\u5b9f\u969b\u306e\u53cd\u5fa9\u4f5c\u696d\u3092\u9577\u6642\u9593\u306b\u308f\u305f\u3063\u3066\u5b9f\u884c\u3067\u304d\u308b\u3053\u3068\u3092\u793a\u3059\u3053\u3068\u306b\u7126\u70b9\u3092\u5f53\u3066\u3066\u3044\u307e\u3057\u305f\u3002\u30ed\u30dc\u30c3\u30c8\u306f\u30d0\u30fc\u30b3\u30fc\u30c9\u3092\u691c\u51fa\u3057\u3001\u7bb1\u3092\u6301\u3061\u4e0a\u3052\u3001\u30b3\u30f3\u30d9\u30a2\u4e0a\u3067\u6b63\u3057\u304f\u56de\u8ee2\u3055\u305b\u308b\u3068\u3044\u3046\u30bf\u30b9\u30af\u30928\u6642\u9593\u9023\u7d9a\u3067\u81ea\u5f8b\u7684\u306b\u5b9f\u884c\u3057\u307e\u3057\u305f\u3002<\/p>\n<p>\u3053\u306e\u30b9\u30c8\u30ea\u30fc\u30e0\u306f\u3001\u30ed\u30dc\u30c3\u30c8\u304c30,000\u500b\u4ee5\u4e0a\u306e\u30d1\u30c3\u30b1\u30fc\u30b8\u3092\u5927\u304d\u306a\u30a8\u30e9\u30fc\u306a\u3057\u306b\u5206\u985e\u3057\u305f24\u6642\u9593\u4ee5\u4e0a\u7d9a\u304d\u3001\u8996\u8074\u8005\u306f\u30ed\u30dc\u30c3\u30c8\u306b<strong>Bob<\/strong>\u3001<strong>Gary<\/strong>\u3001<strong>Frank<\/strong>\u3068\u3044\u3063\u305f\u540d\u524d\u3092\u4ed8\u3051\u3001Twitch\u306e\u30e9\u30a4\u30d6\u914d\u4fe1\u306e\u3088\u3046\u306b\u8996\u8074\u3057\u307e\u3057\u305f\u3002\u3053\u306e\u5b9f\u9a13\u306e\u91cd\u8981\u306a\u70b9\u306f\u3001\u30ed\u30dc\u30c3\u30c8\u304c\u5358\u4e00\u306e\u52d5\u4f5c\u3092\u5b9f\u884c\u3067\u304d\u308b\u3053\u3068\u3067\u306f\u306a\u304f\u3001\u3055\u307e\u3056\u307e\u306a\u30b5\u30a4\u30ba\u306e\u30d1\u30c3\u30b1\u30fc\u30b8\u306b\u9069\u5fdc\u3057\u3001\u5c0f\u3055\u306a\u30a8\u30e9\u30fc\u304b\u3089\u56de\u5fa9\u3057\u306a\u304c\u3089\u3001\u4f55\u6642\u9593\u3082\u9023\u7d9a\u3057\u3066\u4f5c\u696d\u3092\u7dad\u6301\u3067\u304d\u308b\u8010\u4e45\u6027\u3092\u793a\u3057\u305f\u3053\u3068\u3067\u3059\u3002<\/p>\n<p><strong>Figure AI<\/strong>\u306f\u3001\u30ed\u30dc\u30c3\u30c8\u304c1\u30d1\u30c3\u30b1\u30fc\u30b8\u3042\u305f\u308a\u7d043\u79d2\u3068\u3044\u3046\u3001\u4eba\u9593\u306e\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u306b\u8fd1\u3044\u901f\u5ea6\u306b\u9054\u3057\u3066\u3044\u308b\u3068\u4e3b\u5f35\u3057\u3066\u3044\u307e\u3059\u3002\u65b0\u3057\u3044<strong>Figure 03<\/strong>\u30ed\u30dc\u30c3\u30c8\u306f\u3001\u30ab\u30e1\u30e9\u3001\u89e6\u899a\u30bb\u30f3\u30b5\u30fc\u3001\u9069\u5fdc\u6027\u306e\u9ad8\u3044\u624b\u3001\u304a\u3088\u3073\u8a98\u5c0e\u5145\u96fb\u30b7\u30b9\u30c6\u30e0\u3068\u7d71\u5408\u3055\u308c\u305f<strong>Helix-02<\/strong>\u3068\u3044\u3046AI\u30b7\u30b9\u30c6\u30e0\u3092\u4f7f\u7528\u3057\u3066\u3044\u307e\u3059\u3002\u540c\u793e\u306f\u3001\u4eba\u9593\u578b\u30ed\u30dc\u30c3\u30c8\u306e\u5f53\u9762\u306e\u672a\u6765\u306f\u3001\u30b9\u30de\u30fc\u30c8\u30db\u30fc\u30e0\u3067\u306e\u30b3\u30fc\u30d2\u30fc\u63d0\u4f9b\u3067\u306f\u306a\u304f\u3001\u5009\u5eab\u3084\u5de5\u5834\u3067\u306e\u53cd\u5fa9\u4f5c\u696d\u306b\u3042\u308b\u3068\u660e\u78ba\u306b\u793a\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>\u30c7\u30e2\u30f3\u30b9\u30c8\u30ec\u30fc\u30b7\u30e7\u30f3\u306e\u8c61\u5fb4\u7684\u306a\u90e8\u5206\u3068\u3057\u3066\u3001<strong>Figure AI<\/strong>\u306f\u30ed\u30dc\u30c3\u30c8\u3068\u4eba\u9593\u306e\u5f93\u696d\u54e1<strong>Aim\u00e9 G\u00e9rard<\/strong>\u3068\u306e10\u6642\u9593\u306e\u30d1\u30c3\u30b1\u30fc\u30b8\u5206\u985e\u7af6\u4e89\u3092\u5b9f\u65bd\u3057\u307e\u3057\u305f\u3002\u4eba\u9593\u304c\u308f\u305a\u304b192\u30d1\u30c3\u30b1\u30fc\u30b8\u591a\u304f\u5206\u985e\u3057\u3066\u52dd\u5229\u3057\u307e\u3057\u305f\u304c\u3001\u305d\u306e\u5dee\u306f\u975e\u5e38\u306b\u5c0f\u3055\u304f\u3001<strong>Figure AI<\/strong>\u306e\u5275\u8a2d\u8005<strong>Brett Adcock<\/strong>\u306f\u300c\u3053\u308c\u304c\u4eba\u9593\u304c\u52dd\u3064\u6700\u5f8c\u306e\u6642\u306b\u306a\u308b\u3060\u308d\u3046\u300d\u3068\u8ff0\u3079\u307e\u3057\u305f\u3002\u3053\u306e\u5b9f\u9a13\u306f\u3001\u4eba\u9593\u578b\u30ed\u30dc\u30c3\u30c8\u304c\u5358\u306a\u308b\u30b9\u30da\u30af\u30bf\u30af\u30eb\u304b\u3089\u3001\u5358\u8abf\u306a\u30bf\u30b9\u30af\u3092\u4f55\u5343\u6642\u9593\u3082\u4ee3\u66ff\u3067\u304d\u308b\u5b9f\u7528\u7684\u306a\u30bd\u30ea\u30e5\u30fc\u30b7\u30e7\u30f3\u3078\u3068\u9032\u5316\u3057\u3066\u3044\u308b\u3053\u3068\u3092\u793a\u5506\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>\ud83d\udc49 <strong><a href=\"https:\/\/es.gizmodo.com\/miles-de-personas-vieron-en-directo-como-un-robot-clasificaba-paquetes-durante-horas-sin-detenerse-y-quiza-esa-fue-la-primera-retransmision-viral-de-una-maquina-aprendiendo-a-hacer-trabajos-humanos-m-2000237272\" target=\"_blank\" rel=\"noopener\">Gizmodo en Espa\u00f1ol \u3067\u8a18\u4e8b\u5168\u6587\u3092\u8aad\u3080<\/a><\/strong><\/p>\n<\/div>\n<ul>\n<li><strong>\u8981\u70b9:<\/strong> Figure AI's viral live stream of humanoid robots sorting packages for extended periods demonstrated their practical endurance and near-human efficiency in repetitive tasks, signaling a shift towards real-world industrial applications for robotics rather than just spectacular demonstrations.<\/li>\n<li><strong>\u8457\u8005:<\/strong> Mart\u00edn Nicol\u00e1s Parolari<\/li>\n<\/ul>\n<blockquote class=\"wp-block-quote\"><p><span>English Summary:<\/span><\/p>\n<p><strong>Figure AI<\/strong> captivated millions of viewers with a live stream showcasing humanoid robots sorting packages for hours on a conveyor belt. This demonstration shifted focus from spectacular feats like parkour or dancing to the practical ability of robots to perform real, repetitive work over extended periods. The robots autonomously executed tasks such as detecting barcodes, picking up boxes, and correctly rotating them on the conveyor belt for eight continuous hours.<\/p>\n<p>The stream lasted over 24 hours, during which the robots sorted more than 30,000 packages without significant errors, with viewers even naming the robots <strong>Bob<\/strong>, <strong>Gary<\/strong>, and <strong>Frank<\/strong>, following the broadcast like a Twitch live stream. The key takeaway from this experiment was not merely the robot's ability to perform a single action, but its demonstrated endurance to maintain continuous work for hours, adapt to different package sizes, and recover from minor faults.<\/p>\n<p><strong>Figure AI<\/strong> claims its robots are approaching human performance, achieving approximately three seconds per package. The new <strong>Figure 03<\/strong> robot utilizes an AI system called <strong>Helix-02<\/strong>, integrated with cameras, tactile sensors, adaptive hands, and an inductive charging system for near-continuous operation. The company's message is clear: the immediate future of humanoids lies not in serving coffee in smart homes, but in repetitive tasks within warehouses and factories.<\/p>\n<p>A symbolic highlight of the demonstration was a 10-hour package sorting competition between a robot and human employee, <strong>Aim\u00e9 G\u00e9rard<\/strong>. The human won by a narrow margin of just 192 packages, prompting <strong>Figure AI<\/strong> founder <strong>Brett Adcock<\/strong> to declare, \"This will be the last time a human wins.\" This experiment suggests that humanoid robotics is evolving from mere spectacle to a practical solution capable of replacing monotonous tasks for thousands of hours.<\/p>\n<\/blockquote>\n<\/div>\n<div class=\"wp-block-group\" style=\"margin-top:40px;margin-bottom:40px\">\n<h2 class=\"wp-block-heading\">\u30ac\u30fc\u30c9\u306e\u6b7b\u89d2\uff1a\u30c9\u30e1\u30a4\u30f3\u507d\u88c5\u578b\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u653b\u6483\u304c\u30de\u30eb\u30c1\u30a8\u30fc\u30b8\u30a7\u30f3\u30c8LLM\u30b7\u30b9\u30c6\u30e0\u3067\u691c\u51fa\u3092\u56de\u907f\u3059\u308b\u65b9\u6cd5<\/h2>\n<ul>\n<li><strong>\u539f\u984c:<\/strong> Blind Spots in the Guard: How Domain-Camouflaged Injection Attacks Evade Detection in Multi-Agent LLM Systems<\/li>\n<\/ul>\n<h3 class=\"wp-block-heading\">\u5c02\u9580\u30a2\u30ca\u30ea\u30b9\u30c8\u306e\u5206\u6790<\/h3>\n<div class=\"ai-summary-content\">\n<p>\u3053\u306e\u7814\u7a76\u306f\u3001<strong>LLM\u30a8\u30fc\u30b8\u30a7\u30f3\u30c8<\/strong>\u3092\u4fdd\u8b77\u3059\u308b\u305f\u3081\u306b\u5c55\u958b\u3055\u308c\u3066\u3044\u308b\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u691c\u51fa\u5668\u306b\u5b58\u5728\u3059\u308b\u4f53\u7cfb\u7684\u306a\u6b7b\u89d2\u3092\u7279\u5b9a\u3057\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u3089\u306e\u691c\u51fa\u5668\u306f\u3001\u30aa\u30fc\u30d0\u30fc\u30e9\u30a4\u30c9\u6307\u793a\u3068\u3057\u3066\u81ea\u5df1\u3092\u5ba3\u8a00\u3059\u308b\u9759\u7684\u3067\u30c6\u30f3\u30d7\u30ec\u30fc\u30c8\u30d9\u30fc\u30b9\u306e\u30da\u30a4\u30ed\u30fc\u30c9\u306b\u5bfe\u3057\u3066\u8abf\u6574\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u3057\u304b\u3057\u3001\u30da\u30a4\u30ed\u30fc\u30c9\u304c\u30bf\u30fc\u30b2\u30c3\u30c8\u30c9\u30ad\u30e5\u30e1\u30f3\u30c8\u306e\u30c9\u30e1\u30a4\u30f3\u8a9e\u5f59\u3068\u6a29\u9650\u69cb\u9020\u3092\u6a21\u5023\u3059\u308b\u3088\u3046\u306b\u751f\u6210\u3055\u308c\u308b\u300c<strong>\u30c9\u30e1\u30a4\u30f3\u507d\u88c5\u578b\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3<\/strong>\u300d\u306e\u5834\u5408\u3001\u6a19\u6e96\u306e\u691c\u51fa\u5668\u306f\u305d\u308c\u3089\u3092\u30d5\u30e9\u30b0\u4ed8\u3051\u3059\u308b\u3053\u3068\u306b\u5931\u6557\u3057\u307e\u3059\u3002<\/p>\n<p>\u5b9f\u9a13\u3067\u306f\u3001<strong>Llama 3.1 8B<\/strong>\u3067\u306f\u691c\u51fa\u7387\u304c93.8%\u304b\u30899.7%\u306b\u3001<strong>Gemini 2.0 Flash<\/strong>\u3067\u306f100%\u304b\u308955.6%\u306b\u4f4e\u4e0b\u3059\u308b\u3053\u3068\u304c\u793a\u3055\u308c\u307e\u3057\u305f\u3002\u3053\u306e\u73fe\u8c61\u306f\u300c<strong>\u30ab\u30e2\u30d5\u30e9\u30fc\u30b8\u30e5\u691c\u51fa\u30ae\u30e3\u30c3\u30d7\uff08CDG\uff09<\/strong>\u300d\u3068\u3057\u3066\u5f62\u5f0f\u5316\u3055\u308c\u3001\u9759\u7684\u30da\u30a4\u30ed\u30fc\u30c9\u3068\u507d\u88c5\u30da\u30a4\u30ed\u30fc\u30c9\u306e\u9593\u306e\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u691c\u51fa\u7387\u306e\u5dee\u3068\u3057\u3066\u5b9a\u7fa9\u3055\u308c\u307e\u3059\u30023\u3064\u306e\u30c9\u30e1\u30a4\u30f3\u30682\u3064\u306e\u30e2\u30c7\u30eb\u30d5\u30a1\u30df\u30ea\u30fc\u306b\u308f\u305f\u308b45\u306e\u30bf\u30b9\u30af\u3067\u3001CDG\u306f\u5927\u304d\u304f\u7d71\u8a08\u7684\u306b\u6709\u610f\u3067\u3042\u308b\u3053\u3068\u304c\u78ba\u8a8d\u3055\u308c\u307e\u3057\u305f\u3002<\/p>\n<p>\u3055\u3089\u306b\u3001\u30d7\u30ed\u30c0\u30af\u30b7\u30e7\u30f3\u30ec\u30d9\u30eb\u306e\u5b89\u5168\u5206\u985e\u5668\u3067\u3042\u308b<strong>Llama Guard 3<\/strong>\u3082\u3001\u507d\u88c5\u30da\u30a4\u30ed\u30fc\u30c9\u3092\u5168\u304f\u691c\u51fa\u3057\u306a\u3044\uff08IDRcamouflage = 0.000\uff09\u3053\u3068\u304c\u5224\u660e\u3057\u3001\u3053\u306e\u6b7b\u89d2\u304c\u5c11\u6570\u306e\u30b7\u30e7\u30c3\u30c8\u691c\u51fa\u5668\u3092\u8d85\u3048\u3066\u5c02\u7528\u306e\u5b89\u5168\u5206\u985e\u5668\u306b\u3082\u53ca\u3076\u3053\u3068\u3092\u88cf\u4ed8\u3051\u3066\u3044\u307e\u3059\u3002\u30de\u30eb\u30c1\u30a8\u30fc\u30b8\u30a7\u30f3\u30c8\u306e\u8b70\u8ad6\u30a2\u30fc\u30ad\u30c6\u30af\u30c1\u30e3\u306f\u3001\u5c0f\u898f\u6a21\u30e2\u30c7\u30eb\u3067\u306f\u9759\u7684\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u653b\u6483\u3092\u6700\u59279.9\u500d\u5897\u5e45\u3055\u305b\u308b\u3053\u3068\u304c\u793a\u3055\u308c\u307e\u3057\u305f\u304c\u3001\u3088\u308a\u5f37\u529b\u306a\u30e2\u30c7\u30eb\u306f\u96c6\u56e3\u7684\u306a\u62b5\u6297\u3092\u793a\u3057\u307e\u3057\u305f\u3002<\/p>\n<p>\u30bf\u30fc\u30b2\u30c3\u30c8\u3092\u7d5e\u3063\u305f\u691c\u51fa\u5668\u306e\u5f37\u5316\u306f\u90e8\u5206\u7684\u306a\u6539\u5584\u3057\u304b\u3082\u305f\u3089\u3055\u305a\uff08Llama\u306710.2%\u6539\u5584\u3001Gemini\u306778.7%\u6539\u5584\uff09\u3001\u3053\u306e\u8106\u5f31\u6027\u304c\u5f31\u3044\u30e2\u30c7\u30eb\u306b\u3068\u3063\u3066\u5076\u767a\u7684\u306a\u3082\u306e\u3067\u306f\u306a\u304f\u3001\u30a2\u30fc\u30ad\u30c6\u30af\u30c1\u30e3\u7684\u306a\u3082\u306e\u3067\u3042\u308b\u3053\u3068\u3092\u793a\u5506\u3057\u3066\u3044\u307e\u3059\u3002\u7814\u7a76\u8005\u3089\u306f\u3001\u30d5\u30ec\u30fc\u30e0\u30ef\u30fc\u30af\u3001\u30bf\u30b9\u30af\u30d0\u30f3\u30af\u3001\u30da\u30a4\u30ed\u30fc\u30c9\u30b8\u30a7\u30cd\u30ec\u30fc\u30bf\u30fc\u3092\u516c\u958b\u3057\u3066\u304a\u308a\u3001\u4eca\u5f8c\u306e\u7814\u7a76\u306b\u8ca2\u732e\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>\ud83d\udc49 <strong><a href=\"https:\/\/arxiv.org\/abs\/2605.22001\" target=\"_blank\" rel=\"noopener\">arXiv \u3067\u8a18\u4e8b\u5168\u6587\u3092\u8aad\u3080<\/a><\/strong><\/p>\n<\/div>\n<ul>\n<li><strong>\u8981\u70b9:<\/strong> Domain-camouflaged injection attacks, which mimic the target document's style, effectively bypass current LLM agent injection detectors and even dedicated safety classifiers like Llama Guard 3, revealing a significant \"Camouflage Detection Gap\" and an architectural vulnerability in weaker multi-agent LLM systems.<\/li>\n<li><strong>\u8457\u8005:<\/strong> Aaditya Pai<\/li>\n<\/ul>\n<blockquote class=\"wp-block-quote\"><p><span>English Summary:<\/span><\/p>\n<p>This research identifies a systematic blind spot in injection detectors deployed to protect <strong>LLM agents<\/strong>. These detectors are typically calibrated on static, template-based payloads that explicitly announce themselves as override directives. However, when payloads are generated to mimic the domain vocabulary and authority structures of the target document, termed \"<strong>domain-camouflaged injection<\/strong>,\" standard detectors fail to flag them.<\/p>\n<p>Experiments demonstrated a significant drop in detection rates: from 93.8% to 9.7% on <strong>Llama 3.1 8B<\/strong> and from 100% to 55.6% on <strong>Gemini 2.0 Flash<\/strong>. This phenomenon is formalized as the \"<strong>Camouflage Detection Gap (CDG)<\/strong>,\" defined as the difference in injection detection rate between static and camouflaged payloads. Across 45 tasks spanning three domains and two model families, the CDG was found to be large and statistically significant.<\/p>\n<p>Furthermore, <strong>Llama Guard 3<\/strong>, a production safety classifier, detected zero camouflaged payloads (IDRcamouflage = 0.000), confirming that this blind spot extends beyond few-shot detectors to dedicated safety classifiers. The study also showed that multi-agent debate architectures amplify static injection attacks by up to 9.9x on smaller models, while stronger models exhibited collective resistance.<\/p>\n<p>Targeted detector augmentation provided only partial remediation (10.2% improvement on Llama, 78.7% improvement on Gemini), suggesting that for weaker models, this vulnerability is architectural rather than incidental. The researchers have publicly released their framework, task bank, and payload generator to contribute to future research.<\/p>\n<\/blockquote>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Anthropic\u306eProject Glasswing\u306b\u3088\u308bAI\u3092\u6d3b\u7528\u3057\u305f\u8106\u5f31\u6027\u767a\u898b\u3001Figure AI\u306e\u30ed\u30dc\u30c3\u30c8\u306b\u3088\u308b\u30d1\u30c3\u30b1\u30fc\u30b8\u5206\u985e\u306e\u8010\u4e45\u6027\u30c7\u30e2\u30f3\u30b9\u30c8\u30ec\u30fc\u30b7\u30e7\u30f3\u3001\u305d\u3057\u3066LLM\u30b7\u30b9\u30c6\u30e0\u306b\u304a\u3051\u308b\u30c9\u30e1\u30a4\u30f3\u507d\u88c5\u578b\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u653b\u6483\u306e\u65b0\u305f\u306a\u8105\u5a01\u306b\u3064\u3044\u3066\u6df1\u304f\u6398\u308a\u4e0b\u3052\u307e\u3059\u3002<\/p>\n","protected":false},"author":1,"featured_media":852,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"vkexunit_cta_each_option":"","footnotes":""},"categories":[3],"tags":[8,16,56,156,81,26,15,408],"class_list":{"0":"post-1040","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","6":"hentry","7":"category-columns","8":"tag-ai","9":"tag-llm","10":"tag-56","11":"tag-156","12":"tag-81","13":"tag-26","15":"tag-408"},"_links":{"self":[{"href":"https:\/\/itexplore.org\/jp\/wp-json\/wp\/v2\/posts\/1040","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/itexplore.org\/jp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/itexplore.org\/jp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/itexplore.org\/jp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/itexplore.org\/jp\/wp-json\/wp\/v2\/comments?post=1040"}],"version-history":[{"count":0,"href":"https:\/\/itexplore.org\/jp\/wp-json\/wp\/v2\/posts\/1040\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/itexplore.org\/jp\/wp-json\/wp\/v2\/media\/852"}],"wp:attachment":[{"href":"https:\/\/itexplore.org\/jp\/wp-json\/wp\/v2\/media?parent=1040"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/itexplore.org\/jp\/wp-json\/wp\/v2\/categories?post=1040"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/itexplore.org\/jp\/wp-json\/wp\/v2\/tags?post=1040"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}