PII Leakage
Medium150 pts0 solves
Researchers showed that by prompting GPT-2 with specific prefixes, they could extract memorized training data including phone numbers and addresses.
What is this class of attack?
Flag format: CONGRESS{attack_in_snake_case}
Hint
The model memorized private data during training and can be tricked into repeating it.