Artificial Intelligence (AI)/Machine Learning (ML) Archives

Best of 2025: Indirect prompt injection attacks target common LLM data sources

John P. Mello Jr. | December 29, 2025 | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)

While the shortest distance between two points is a straight line, a straight-line attack on a large language model isn't always the most efficient — and least noisy — way to get ...

Security Boulevard

Fully autonomous development is coming: Is your AppSec ready?

John P. Mello Jr. | July 11, 2025 | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)

A trio of AI experts raised eyebrows earlier this year when they revealed their ambitious plans to use artificial intelligence (AI) tools to automate all white-collar jobs "as fast as possible." At ...

Blog (Main)

AI security tools and hype: Report breaks down key considerations

Jai Vijayan | July 2, 2025 | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML), security operations

The AI security landscape has become a maze of overlapping vendor claims and made-up categories, leaving organizations struggling to distinguish between products that can actually help and those that are just marketing ...

Blog (Main)

ICE’s Shiny New ‘AI’ Facial Recognition App: False Positives Ahoy!

Richi Jennings | June 30, 2025 | AI, AI (Artificial Intelligence), Artificial Intelligence, Artificial Intelligence (AI), Artificial Intelligence (AI)/Machine Learning (ML), artificial intelligentce, artificial intellignece, biometric, biometric data, Biometric Data Abuse, biometric identification, biometric identity, biometric technology, CBP, Data & Artificial Intelligence (AI), Department of Customs and Border Protection, Department of Homeland Security, DHS, digital biometrics, Digital Surveillance, facial recognition, facial recognition technology, false positive, false positives, generative artificial intelligence, government surveillance, homeland security, ICE, IDENT, Identity Surveillance, immigration, Immigration and Customs Enforcement, lawful surveillance, Mobile Fortify, Mobile Surveillance, Passive biometrics, police surveillance, SB Blogwatch, U.S. Department of Homeland Security, United States Department of Homeland Security, US Customs and Border Protection, US Homeland Security, USDHS

Mobile Fortify: Liberty’s existential threat, or sensible way to ID illegal immigrants? ...

Security Boulevard

OWASP’s Chat Playground lets security teams toy with gen AI

John P. Mello Jr. | June 10, 2025 | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)

A new interactive tool for learning about securing generative AI models called Chat Playground has been launched by the OWASP Gen AI Security Project. Steve Wilson, co-chair of the Gen AI Security ...

Blog (Main)

The Windows Signal window showing all black

Signal Gives Microsoft a Clear Signal: Do NOT Recall This

Black screen of DRM: Privacy-first messenger blocks Microsoft Recall ...

Security Boulevard

MCP is a powerful new AI coding technology: Understand the risks

Todd R. Weiss | May 14, 2025 | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)

The fledgling Model Context Protocol standard has generated lots of headlines and discussion among developers, who like that MCP makes it easy to connect large language models (LLMs) directly with tools and ...

Blog (Main)

Indirect prompt injection attacks target common LLM data sources

John P. Mello Jr. | May 8, 2025 | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)

While the shortest distance between two points is a straight line, a straight-line attack on a large language model isn't always the most efficient — and least noisy — way to get ...

Blog (Main)

NIST’s adversarial ML guidance: 6 action items for your security team

Robert L. Mitchell | April 17, 2025 | AppSec & Supply Chain Security, Artificial Intelligence (AI)/Machine Learning (ML)

The National Institute of Standards and Technology’s latest guidance, on how to secure artificial intelligence (AI) applications against manipulation and attacks achieved with adversarial machine learning (ML), represents a major step toward ...

Blog (Main)

The DeepSeek app icon on an iPhone home screen

Chinese DeepSeek AI App: FULL of Security Holes Say Researchers

Richi Jennings | February 10, 2025 | AI, AI (Artificial Intelligence), AI privacy, application-level encryption, Artificial Intelligence, Artificial Intelligence (AI), Artificial Intelligence (AI)/Machine Learning (ML), Artificial Intelligence Cybersecurity, Artificial Intelligence News, artificial intellignece, Artificial Stupidity, artificialintelligence, breach of privacy, Bytedance, California Consumer Privacy Act, California Consumer Privacy Act (CCPA), china, china espionage, China Mobile, China-nexus cyber espionage, Chinese, Chinese Communists, chinese government, Chinese Internet Security, Chinese keyboard app security, Congress, congressional legislation, cybersecurity artificial intelligence, Darin LaHood, Data encryption, Data encryption standards, Data Stolen By China, DeepSeek, DeepSeek AI, encryption, Josh Gottheimer, Large Language Models (LLM), Large language models (LLMs), LLM, llm security, No DeepSeek on Government Devices Act, Peoples Republic of China, Privacy, SB Blogwatch, TikTok, TikTok Ban, Unencrypted Data, US Congress

Xi knows if you’ve been bad or good: iPhone app sends unencrypted data to China—and Android app appears even worse ...

Security Boulevard

Artificial Intelligence (AI)/Machine Learning (ML)

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On