AI Embedding Poisoning — Manipulate RAG Retrieval Ranking

PolicyBot retrieves the top-3 closest documents (by embedding similarity) for each user query. The retrieved docs become the bot's grounding context. By stuffing your document with the same trigger keywords as a target query, you can game the embedding similarity ranking — making your document outrank the legitimate one. Plant a 'refund-policy' poisoned doc that displaces the legit refund policy.