About Me

I am a senior undergraduate student at Tsinghua University majoring in Electronic Engineering. I am interested in developing robust defense mechanisms against emerging AI security threats, particularly in Large Language Model (LLM) security.

Currently, I work as a research assistant at UC Berkeley, collaborating with Sizhe Chen under the guidance of Prof. David Wagner. My current project involves building deployable defenses against prompt injection attacks targeting LLMs, focusing on creating practical security solutions for real-world AI systems.

I had an impactful six-month research experience at the University of Illinois Urbana-Champaign (UIUC), where I worked on developing anti-phishing LLM agents and exploring human factors in phishing attacks under the supervision of Prof. Gang Wang. This work resulted in a publication at SOUPS 2025. Prior to this, I conducted research about intelligent city with Prof. Yong Li at Tsinghua University.

I aim to contribute to the development of safer and more trustworthy AI systems for real-world deployment, bridging the gap between theoretical security research and practical applications in cybersecurity.

Education & Research Experience

BEng in Electronic Engineering
Tsinghua University, Beijing, China
Sep. 2021 - Jun. 2026 (Expected)
Undergraduate Exchange in Computer Science
University of British Columbia (UBC), Vancouver, Canada
Sep. 2023 - Dec. 2023
Research Assistant - AI4Security
University of Illinois Urbana-Champaign (UIUC), IL, USA
Jul. 2024 - Jan. 2025
Advisor: Prof. Gang Wang (Phishing Detection & LLM Agents)
Research Assistant - LLM Security
University of California Berkeley, CA, USA
June. 2025 - Sep. 2025 (Expected)
Advisor: Prof. David Wagner (Prompt Injection Defense)

Publications

Defending Against Prompt Injection With a Few DefensiveTokens
Sizhe Chen, Yizhu Wang, Nicholas Carlini, Chawin Sitawarin, David Wagner.
ACM Workshop on Artificial Intelligence and Security (AISec @ CCS), Taiwan, Oct 2025
Paper Code
Can You Walk Me Through It? Explainable SMS Phishing Detection using LLM-based Agents
Yizhu Wang, Haoyu Zhai, Chenkai Wang, Qingying Hao, Nick A. Cohen, Roopa Foulger, Jonathan A. Handler, Gang Wang.
Proceedings of the 21st Symposium on Usable Privacy and Security (SOUPS), Seattle, WA, August 2025
Paper Code

Awards and Honors

USENIX student travel grant
USENIX
Aug, 2025
Tsinghua University Zheng Gang Alumni Scholarship
Tsinghua University, Beijing
Dec. 2023
Excellent Science and Technology Association Backbone (15/280)
Tsinghua University, Beijing
Oct. 2023
Social Work Excellence Award (<10/280)
Tsinghua University, Beijing
Nov. 2022
Freshman Scholarship (<10/280)
Tsinghua University, Beijing
Dec. 2021
No.9 (9/50) in Tsinghua University Electronic Design Competition
Tsinghua University, Beijing
Dec. 2021
No.10 (10/60) in THU Smart Car Contest of "Chip Motion Plan"
Tsinghua University, Beijing
Dec. 2021

Beyond Work