Stav Cohen

Stav Cohen

Senior AI Security Researcher | PhD Student

Zenity

Technion – Israel Institute of Technology

Biography

Hi there! I’m a Senior AI Security Researcher on the Red Team at Zenity and a PhD student at the Technion, Israel Institute of Technology.

I break AI agents for a living, and then figure out how to fix them. At Zenity, I research AI security vulnerabilities across agentic AI systems, LLM-powered applications, and enterprise AI platforms. I discover new attack vectors, develop remediation strategies, and work to drive the industry toward stronger security practices. I’m also passionate about teaching others and spreading awareness, serving as a thought leader in the AI security space through conference talks, blog posts, and community engagement.

My offensive security work spans attacks on RAG pipelines, multi-agent delegation protocols, agentic browsers, and production-scale GenAI systems. I introduced the concept of Promptware: a new class of inference-time threats that exploit GenAI models through malicious prompts, turning them from helpful assistants into tools for data exfiltration, lateral movement, and even physical-world consequences. I share these findings at leading security venues including Black Hat USA, Black Hat Europe, DEF CON, and SecTor.

My PhD research focuses on the secure integration of Generative AI into real-world infrastructure, especially Cyber-Physical-Human Systems (CPHS) involving human-in-the-loop interactions, such as smart water networks and GenAI-powered virtual assistants. I explore how GenAI agents can be safely and effectively integrated into these environments to support real-time decision-making, anomaly detection, and human-machine collaboration.

Interests
  • Artificial Intelligence
  • GenAI
  • AI Security
  • Cyber-Physical Systems

Experience

 
 
 
 
 
Zenity
Senior AI Security Researcher
September 2026 – Present Red Team
Researching AI security vulnerabilities — discovering them, developing fixes, and driving remediation strategies. Teaching others and serving as a thought leader in the AI security space. Speaking at conferences and spreading awareness around AI security risks and best practices.
 
 
 
 
 
Cornell-Tech
Research Summer Internship
August 2023 – November 2023 New York
Researched the security implications of multi-modal Language Models and developed attack vector strategies.
 
 
 
 
 
Technion – Israel Institute of Technology
Teaching Assistant
October 2022 – Present Israel

Excellent Instructor Award recipient (2024, 2025). Teaching Assistant in the courses:

      * Machine Learning in Portfolio Selection 
      * Big Data Gathering and Management Lab
      * Software Engineering 2 - MLOPs
      * Cognition in Information Visualization

Blogs

Academic Research

(2025). One Agent to Rule Them All: How One Malicious Agent Hijacks A2A System. Preprint.

SecTor 2025

(2025). WaCSim: A Water and Cyber Simulation Tool for Enhancing Cyber Security in Smart Water Systems. EWRI 2025.

(2025). A Cyber-Physical Transformer For Intrusion Detection In Water Supply Networks. Under work.

(2024). Advancing Metaverse's Experience Through Optimization Of Players' Decisions. IJIM Data Insights.

DOI