Artificial Intelligence (AI)/Machine Learning (ML)

MCP is a powerful new AI coding technology: Understand the risks

MCP is a powerful new AI coding technology: Understand the risks

| | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)
The fledgling Model Context Protocol standard has generated lots of headlines and discussion among developers, who like that MCP makes it easy to connect large language models (LLMs) directly with tools and ...
Blog (Main)
Indirect prompt injection attacks target common LLM data sources

Indirect prompt injection attacks target common LLM data sources

| | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)
While the shortest distance between two points is a straight line, a straight-line attack on a large language model isn't always the most efficient — and least noisy — way to get ...
Blog (Main)
NIST's adversarial ML guidance: 6 action items for your security team

NIST’s adversarial ML guidance: 6 action items for your security team

| | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)
The National Institute of Standards and Technology’s latest guidance, on how to secure artificial intelligence (AI) applications against manipulation and attacks achieved with adversarial machine learning (ML), represents a major step toward ...
Blog (Main)
The DeepSeek app icon on an iPhone home screen

Chinese DeepSeek AI App: FULL of Security Holes Say Researchers

| | AI, AI (Artificial Intelligence), AI privacy, application-level encryption, Artificial Intelligence, Artificial Intelligence (AI), Artificial Intelligence (AI)/Machine Learning (ML), Artificial Intelligence Cybersecurity, Artificial Intelligence News, artificial intellignece, Artificial Stupidity, artificialintelligence, breach of privacy, Bytedance, California Consumer Privacy Act, California Consumer Privacy Act (CCPA), china, china espionage, China Mobile, China-nexus cyber espionage, Chinese, Chinese Communists, chinese government, Chinese Internet Security, Chinese keyboard app security, Congress, congressional legislation, cybersecurity artificial intelligence, Darin LaHood, Data encryption, Data encryption standards, Data Stolen By China, DeepSeek, DeepSeek AI, encryption, Josh Gottheimer, Large Language Models (LLM), Large language models (LLMs), LLM, llm security, No DeepSeek on Government Devices Act, Peoples Republic of China, Privacy, SB Blogwatch, TikTok, TikTok Ban, Unencrypted Data, US Congress
Xi knows if you’ve been bad or good: iPhone app sends unencrypted data to China—and Android app appears even worse ...
Security Boulevard
The OWASP NHI Top 10 and AI risk: What you need to know

The OWASP NHI Top 10 and AI risk: What you need to know

| | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)
Identity management has long been a pillar of any sound cybersecurity program, ensuring that only authorized persons and machines have access to specific data and systems. Today, the rapid adoption of artificial ...
Blog (Main)
Seth Larson

AI Slop is Hurting Security — LLMs are Dumb and People are Dim

| | AI, AI (Artificial Intelligence), AI hallucination, AI Misinformation generative AI, artifical intelligence, Artifical Stupidity, Artificial Artificiality, Artificial Intelligence, Artificial Intelligence (AI), Artificial Intelligence (AI)/Machine Learning (ML), Artificial Intelligence Cybersecurity, artificial intelligence in cybersecurity, artificial intelligence in security, artificial intellignece, Artificial Stupidity, CVE, CVE (Common Vulnerabilities and Exposures), cybersecurity risks of generative ai, Gen AI, GenAI, genai-for-security, generative AI, generative ai gen ai, Generative AI risks, generative artificial intelligence, Large Language Model, large language models, Large Language Models (LLM), Large language models (LLMs), LLM, LLM Platform Abuse, llm security, SB Blogwatch, Seth Larson
Artificial stupidity: Large language models are terrible if you need reasoning or actual understanding ...
Security Boulevard
AI-based fuzzing targets open-source LLM vulnerabilities

AI-based fuzzing targets open-source LLM vulnerabilities

| | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)
Google recently announced a milestone in finding vulnerabilities in open-source software using automated fuzzing tools enhanced by artificial intelligence (AI). Twenty-six new vulnerabilities — including a critical one in the OpenSSL library ...
ReversingLabs Blog
OWASP Top 10 for LLM adds risks: Get on target to secure your AI models

OWASP Top 10 for LLM adds risks: Get on target to secure your AI models

| | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)
...
ReversingLabs Blog
OWASP Top 10 for LLM and new tooling guidance targets GenAl security

OWASP Top 10 for LLM and new tooling guidance targets GenAl security

| | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)
New guidance for organizations seeking to protect the generative AI tools they're running has been released by the OWASP Top 10 LLM Applications Security Project ...
ReversingLabs Blog
Predicting AI's Impact on Security

AI and cybersecurity: Modernize your SecOps to tackle today’s threats

| | Artificial Intelligence (AI)/Machine Learning (ML), security operations
Much has been written about the threats artificial intelligence (AI) can pose to an organization's security, but the technology can be transformative for security teams as well, helping them tackle the key ...
ReversingLabs Blog
Load more