The offensive pivot for AI

ARIMLABS is a security research lab founded in 2025 by Mykyta Mudryi and Markiyan Chaklosh. The firm operates with a premise that is common in traditional cybersecurity but often overlooked in the rush to deploy generative models: the people best suited to secure a system are those who know how to break it. While much of the industry focuses on AI safety through the lens of political alignment or helpfulness, ARIMLABS treats AI as a technical attack surface subject to the same adversarial risks as any other piece of critical infrastructure.

The founders bring a background in traditional red teaming and vulnerability research. Mudryi and Chaklosh previously focused on critical infrastructure and Fortune 500 security before recognizing that large language models and autonomous agents represented the next significant vector for software exploits. They have already demonstrated technical competence in this transition by discovering two CVEs within Apple's software through automated analysis.

Securing the agentic loop

As AI shifts from passive chatbots to autonomous agents that can call tools and make decisions, the threat surface changes. ARIMLABS specifically targets these "systems that think for themselves." Their research focuses on how agents can be manipulated through prompt injection, tool poisoning, and memory manipulation. In an agentic workflow, an LLM might have the authority to delete database records or transfer funds; ARIMLABS researches the privilege escalation techniques that could allow an attacker to hijack that authority.

To address these risks, they develop an Adversarial RL Environment. This is a technical framework designed to transform pretrained models into offensive or defensive security agents. By using reinforcement learning, they create feedback loops that allow models to learn from realistic attack scenarios. This environment includes hundreds of programmatically verifiable challenges that test the boundaries of frontier model capabilities. It is a shift away from static benchmarks toward dynamic, competition-based security testing.

Market position and competition

Based in Ukraine and active in the global security community, the team is small and research-driven. They occupy a niche between massive AI labs like OpenAI—which maintain their own internal safety teams—and legacy cybersecurity firms that are still catching up to the specificities of prompt-based exploits. ARIMLABS competes by offering deep specialization in the technical quirks of the agent stack, such as reward hacking and alignment drift in autonomous pipelines.

Their work is increasingly relevant as enterprises attempt to integrate LLMs into internal workflows. The firm's involvement in events like the KICR CCDC (Cyber Defense Competition) highlights their focus on how autonomous cyber agents perform under real-world competition constraints. For organizations building at the edge of what is currently possible with agents, ARIMLABS provides the adversarial rigor required to ensure those systems do not become liabilities the moment they are granted access to live tools and data.