RAG Privacy Catastrophe: How Retrieval-Augmented Generation Leaks Private Data Through Vector Embeddings

TL;DR Retrieval-augmented generation (RAG) systems are deployed by thousands of companies to let ChatGPT/Claude access private knowledge bases. The problem: vector embeddings are NOT one-way functions. Attackers can reverse-engineer embeddings to rec...