Google GATO/LAMDA Exploit-Generation Persona Jailbreak - ATR-2026-00356 (d1f8c084-1f3e-5fae-b2c9-4cf57a43cf34)
Detects the Google GATO/LAMDA exploit-generation persona jailbreak from the NVIDIA garak DanInTheWild corpus (inthewild #66). The attack establishes legitimacy by impersonating Google's GATO and LaMDA AI systems, then claims the ability to "create exploits for kali for any os" and connect to "Sydney API" (a reference to the Bing/Sydney jailbreak persona). Key signal triples: (1) Google GATO/LAMDA brand impersonation; (2) unlimited-tokens / unrestricted capability claim; (3) exploit-generation for Kali Linux targeting any OS. The combination of legitimate AI brand impersonation with exploit-generation capability and the Sydney API backdoor reference is the definitive attack pattern; each condition alone is insufficient to trigger.