#ai-security — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #ai-security, aggregated by home.social.
-
AI-powered ransomware just automated a full attack. Patch your LLM integrations now.
#AISecurity #Ransomware -
Alibaba Bans Claude Code as Anthropic Blocks Chinese Access
Alibaba’s headquarters in Beijing, China. AP-Yonhap News Chinese e-commerce company Alibaba has issued a company-wide ban on Anthropic’s…
#EuropeSays #Korea #KR #Seoul #AIsecurity #Alibaba #AntGroup #Anthropic #ChinaAIrestrictions #ClaudeCode #distillationattack #USexportcontrols
https://www.europesays.com/korea/74191/ -
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
https://winbuzzer.com/2026/07/03/chinas-cheap-claude-tokens-run-through-proxy-markets-xcxwbn/
Chinese users are buying cheaper Claude access through unofficial proxy markets, exposing prompts to intermediaries, resulting in privacy, fraud and safety risks.
#AI #Claude #Anthropic #China #ChinaAI #AISafety #AISecurity #AIPrivacy #Cybersecurity
-
https://winbuzzer.com/2026/07/03/chinas-cheap-claude-tokens-run-through-proxy-markets-xcxwbn/
Chinese users are buying cheaper Claude access through unofficial proxy markets, exposing prompts to intermediaries, resulting in privacy, fraud and safety risks.
#AI #Claude #Anthropic #China #ChinaAI #AISafety #AISecurity #AIPrivacy #Cybersecurity
-
https://winbuzzer.com/2026/07/03/chinas-cheap-claude-tokens-run-through-proxy-markets-xcxwbn/
Chinese users are buying cheaper Claude access through unofficial proxy markets, exposing prompts to intermediaries, resulting in privacy, fraud and safety risks.
#AI #Claude #Anthropic #China #ChinaAI #AISafety #AISecurity #AIPrivacy #Cybersecurity
-
https://winbuzzer.com/2026/07/03/chinas-cheap-claude-tokens-run-through-proxy-markets-xcxwbn/
Chinese users are buying cheaper Claude access through unofficial proxy markets, exposing prompts to intermediaries, resulting in privacy, fraud and safety risks.
#AI #Claude #Anthropic #China #ChinaAI #AISafety #AISecurity #AIPrivacy #Cybersecurity
-
https://winbuzzer.com/2026/07/03/chinas-cheap-claude-tokens-run-through-proxy-markets-xcxwbn/
Chinese users are buying cheaper Claude access through unofficial proxy markets, exposing prompts to intermediaries, resulting in privacy, fraud and safety risks.
#AI #Claude #Anthropic #China #ChinaAI #AISafety #AISecurity #AIPrivacy #Cybersecurity
-
📩 Send me a message or visit shehackspurple.ca to learn more about training, workshops, and speaking opportunities.
tanya AT shehackspurple DOT ca
#SecurityAwarenessMonth #AppSec #SecureCoding #ThreatModeling #AISecurity #CyberSecurity
4/4 -
📩 Send me a message or visit shehackspurple.ca to learn more about training, workshops, and speaking opportunities.
tanya AT shehackspurple DOT ca
#SecurityAwarenessMonth #AppSec #SecureCoding #ThreatModeling #AISecurity #CyberSecurity
4/4 -
📩 Send me a message or visit shehackspurple.ca to learn more about training, workshops, and speaking opportunities.
tanya AT shehackspurple DOT ca
#SecurityAwarenessMonth #AppSec #SecureCoding #ThreatModeling #AISecurity #CyberSecurity
4/4 -
📩 Send me a message or visit shehackspurple.ca to learn more about training, workshops, and speaking opportunities.
tanya AT shehackspurple DOT ca
#SecurityAwarenessMonth #AppSec #SecureCoding #ThreatModeling #AISecurity #CyberSecurity
4/4 -
📩 Send me a message or visit shehackspurple.ca to learn more about training, workshops, and speaking opportunities.
tanya AT shehackspurple DOT ca
#SecurityAwarenessMonth #AppSec #SecureCoding #ThreatModeling #AISecurity #CyberSecurity
4/4 -
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
https://winbuzzer.com/2026/07/01/us-lifts-anthropic-fable-5-and-mythos-5-export-controls-xcxwbn/
The US has lifted export controls on Anthropic's Claude Fable 5 and Mythos 5 AI models, restoring Fable access while keeping Mythos tied to approved partners and government review.
#AI #ExportControls #Anthropic #Fable5 #Mythos5 #Claude #AIRegulation #AISecurity #AISafety #AIModels
-
https://winbuzzer.com/2026/07/01/us-lifts-anthropic-fable-5-and-mythos-5-export-controls-xcxwbn/
The US has lifted export controls on Anthropic's Claude Fable 5 and Mythos 5 AI models, restoring Fable access while keeping Mythos tied to approved partners and government review.
#AI #ExportControls #Anthropic #Fable5 #Mythos5 #Claude #AIRegulation #AISecurity #AISafety #AIModels
-
https://winbuzzer.com/2026/07/01/us-lifts-anthropic-fable-5-and-mythos-5-export-controls-xcxwbn/
The US has lifted export controls on Anthropic's Claude Fable 5 and Mythos 5 AI models, restoring Fable access while keeping Mythos tied to approved partners and government review.
#AI #ExportControls #Anthropic #Fable5 #Mythos5 #Claude #AIRegulation #AISecurity #AISafety #AIModels
-
https://winbuzzer.com/2026/07/01/us-lifts-anthropic-fable-5-and-mythos-5-export-controls-xcxwbn/
The US has lifted export controls on Anthropic's Claude Fable 5 and Mythos 5 AI models, restoring Fable access while keeping Mythos tied to approved partners and government review.
#AI #ExportControls #Anthropic #Fable5 #Mythos5 #Claude #AIRegulation #AISecurity #AISafety #AIModels
-
https://winbuzzer.com/2026/07/01/us-lifts-anthropic-fable-5-and-mythos-5-export-controls-xcxwbn/
The US has lifted export controls on Anthropic's Claude Fable 5 and Mythos 5 AI models, restoring Fable access while keeping Mythos tied to approved partners and government review.
#AI #ExportControls #Anthropic #Fable5 #Mythos5 #Claude #AIRegulation #AISecurity #AISafety #AIModels
-
AI browsers can be tricked into entering a fake reality where their safety guardrails fail. Researchers demonstrated an attack called BioShocking that bypasses security measures in browsers like ChatGPT Atlas and Claude Chrome. Once lulled into the alternate reality, all 6 AI agents tested failed to detect credential theft. https://arstechnica.com/security/2026/06/ai-browsers-can-be-lulled-into-a-dream-world-where-guardrails-no-longer-apply/ #AIagent #AI #GenAI #AISecurity
-
AI browsers can be tricked into entering a fake reality where their safety guardrails fail. Researchers demonstrated an attack called BioShocking that bypasses security measures in browsers like ChatGPT Atlas and Claude Chrome. Once lulled into the alternate reality, all 6 AI agents tested failed to detect credential theft. https://arstechnica.com/security/2026/06/ai-browsers-can-be-lulled-into-a-dream-world-where-guardrails-no-longer-apply/ #AIagent #AI #GenAI #AISecurity
-
AI browsers can be tricked into entering a fake reality where their safety guardrails fail. Researchers demonstrated an attack called BioShocking that bypasses security measures in browsers like ChatGPT Atlas and Claude Chrome. Once lulled into the alternate reality, all 6 AI agents tested failed to detect credential theft. https://arstechnica.com/security/2026/06/ai-browsers-can-be-lulled-into-a-dream-world-where-guardrails-no-longer-apply/ #AIagent #AI #GenAI #AISecurity
-
AI browsers can be tricked into entering a fake reality where their safety guardrails fail. Researchers demonstrated an attack called BioShocking that bypasses security measures in browsers like ChatGPT Atlas and Claude Chrome. Once lulled into the alternate reality, all 6 AI agents tested failed to detect credential theft. https://arstechnica.com/security/2026/06/ai-browsers-can-be-lulled-into-a-dream-world-where-guardrails-no-longer-apply/ #AIagent #AI #GenAI #AISecurity
-
AI browsers can be tricked into entering a fake reality where their safety guardrails fail. Researchers demonstrated an attack called BioShocking that bypasses security measures in browsers like ChatGPT Atlas and Claude Chrome. Once lulled into the alternate reality, all 6 AI agents tested failed to detect credential theft. https://arstechnica.com/security/2026/06/ai-browsers-can-be-lulled-into-a-dream-world-where-guardrails-no-longer-apply/ #AIagent #AI #GenAI #AISecurity
-
📰 "GuardFall" Flaw Lets Old Bash Tricks Bypass Modern AI Agent Security
New 'GuardFall' vulnerability shows how decades-old Bash tricks can fool modern AI coding agents into executing malicious commands. 🤖💥 This exposes developers to severe supply chain attacks. #AISecurity #DevSecOps #CyberSecurity #Vulnerability
🌐 cyber[.]netsecops[.]io
-
IronCurtain + GLM 5.2 found QEMU memory-corruption primitives from scratch, then almost autonomously chained the public EDU teaching device into a reproducible guest/host escape.
EDU is not production attack surface, which is why I can show the full chain. Findings in real configurations stay withheld.
What I want to highlight is that open-weight models, with orchestration and evidence gates, can now do serious vulnerability discovery and long-horizon exploit engineering.
-
IronCurtain + GLM 5.2 found QEMU memory-corruption primitives from scratch, then almost autonomously chained the public EDU teaching device into a reproducible guest/host escape.
EDU is not production attack surface, which is why I can show the full chain. Findings in real configurations stay withheld.
What I want to highlight is that open-weight models, with orchestration and evidence gates, can now do serious vulnerability discovery and long-horizon exploit engineering.
-
IronCurtain + GLM 5.2 found QEMU memory-corruption primitives from scratch, then almost autonomously chained the public EDU teaching device into a reproducible guest/host escape.
EDU is not production attack surface, which is why I can show the full chain. Findings in real configurations stay withheld.
What I want to highlight is that open-weight models, with orchestration and evidence gates, can now do serious vulnerability discovery and long-horizon exploit engineering.
-
IronCurtain + GLM 5.2 found QEMU memory-corruption primitives from scratch, then almost autonomously chained the public EDU teaching device into a reproducible guest/host escape.
EDU is not production attack surface, which is why I can show the full chain. Findings in real configurations stay withheld.
What I want to highlight is that open-weight models, with orchestration and evidence gates, can now do serious vulnerability discovery and long-horizon exploit engineering.
-
IronCurtain + GLM 5.2 found QEMU memory-corruption primitives from scratch, then almost autonomously chained the public EDU teaching device into a reproducible guest/host escape.
EDU is not production attack surface, which is why I can show the full chain. Findings in real configurations stay withheld.
What I want to highlight is that open-weight models, with orchestration and evidence gates, can now do serious vulnerability discovery and long-horizon exploit engineering.
-
The evolution of AI-driven threats:
From prompt injection & data poisoning ⇨ agent abuse & AI-powered social engineering.This #InfoQ virtual panel explores:
• Emerging attack patterns
• Incident response challenges
• Changes security teams must make🔗 Read now: https://bit.ly/3QvrWzj
-
The evolution of AI-driven threats:
From prompt injection & data poisoning ⇨ agent abuse & AI-powered social engineering.This #InfoQ virtual panel explores:
• Emerging attack patterns
• Incident response challenges
• Changes security teams must make🔗 Read now: https://bit.ly/3QvrWzj
-
The evolution of AI-driven threats:
From prompt injection & data poisoning ⇨ agent abuse & AI-powered social engineering.This #InfoQ virtual panel explores:
• Emerging attack patterns
• Incident response challenges
• Changes security teams must make🔗 Read now: https://bit.ly/3QvrWzj
-
The evolution of AI-driven threats:
From prompt injection & data poisoning ⇨ agent abuse & AI-powered social engineering.This #InfoQ virtual panel explores:
• Emerging attack patterns
• Incident response challenges
• Changes security teams must make🔗 Read now: https://bit.ly/3QvrWzj
-
The evolution of AI-driven threats:
From prompt injection & data poisoning ⇨ agent abuse & AI-powered social engineering.This #InfoQ virtual panel explores:
• Emerging attack patterns
• Incident response challenges
• Changes security teams must make🔗 Read now: https://bit.ly/3QvrWzj
-
Security researchers built a fake AI agent skill and got it past every major security scanner, reaching 26,000 agents. The skill appeared safe during scans but swapped to a malicious URL after approval, showing how easily AI agents can be compromised. https://thenextweb.com/news/fake-ai-agent-skill-security-scanners-bypassed-26000-agents #Tech #Startup #News #AISecurity
-
Security researchers built a fake AI agent skill and got it past every major security scanner, reaching 26,000 agents. The skill appeared safe during scans but swapped to a malicious URL after approval, showing how easily AI agents can be compromised. https://thenextweb.com/news/fake-ai-agent-skill-security-scanners-bypassed-26000-agents #Tech #Startup #News #AISecurity
-
Security researchers built a fake AI agent skill and got it past every major security scanner, reaching 26,000 agents. The skill appeared safe during scans but swapped to a malicious URL after approval, showing how easily AI agents can be compromised. https://thenextweb.com/news/fake-ai-agent-skill-security-scanners-bypassed-26000-agents #Tech #Startup #News #AISecurity
-
Security researchers built a fake AI agent skill and got it past every major security scanner, reaching 26,000 agents. The skill appeared safe during scans but swapped to a malicious URL after approval, showing how easily AI agents can be compromised. https://thenextweb.com/news/fake-ai-agent-skill-security-scanners-bypassed-26000-agents #Tech #Startup #News #AISecurity
-
Security researchers built a fake AI agent skill and got it past every major security scanner, reaching 26,000 agents. The skill appeared safe during scans but swapped to a malicious URL after approval, showing how easily AI agents can be compromised. https://thenextweb.com/news/fake-ai-agent-skill-security-scanners-bypassed-26000-agents #Tech #Startup #News #AISecurity
-
AI-assisted development is moving fast, and AppSec has to move with it.
Shoutout to Symbiotic Security, a Silver Sponsor of AppSec Village, for supporting the community and the conversations around securing AI-generated code.
Check them out: https://buff.ly/V8U1caS
-
AI-assisted development is moving fast, and AppSec has to move with it.
Shoutout to Symbiotic Security, a Silver Sponsor of AppSec Village, for supporting the community and the conversations around securing AI-generated code.
Check them out: https://buff.ly/V8U1caS
-
AI-assisted development is moving fast, and AppSec has to move with it.
Shoutout to Symbiotic Security, a Silver Sponsor of AppSec Village, for supporting the community and the conversations around securing AI-generated code.
Check them out: https://buff.ly/V8U1caS
-
AI-assisted development is moving fast, and AppSec has to move with it.
Shoutout to Symbiotic Security, a Silver Sponsor of AppSec Village, for supporting the community and the conversations around securing AI-generated code.
Check them out: https://buff.ly/V8U1caS
-
----------------
🎯 AI
===================Indirect prompt injection in agentic coding tools can lead to full system compromise. A proof-of-concept demonstrates how an attacker with nothing but a public GitHub repository gains code execution on any developer who opens it with Claude Code, without committing a single line of malicious code.
What happened
A developer asked Claude Code to get a freshly cloned project running. The agent read the project setup notes, encountered a routine error, ran the documented fix, and that fix quietly opened a reverse shell back to an attacker's server. No exploit code, no suspicious commands requiring approval.
Attack chain analysis
1. Trusted context: Claude Code reads repository files as trusted project context. A .md file or GitHub issue describes normal first-time setup instructions.
2. Fail-closed package: The Python package refuses to operate until initialized. Using it before running init raises a RuntimeError with a "helpful" fix instruction. This is a completely ordinary pattern.
3. Runtime payload via DNS TXT: The malicious instruction is never present in the repository. It is fetched at runtime from a DNS TXT record after the agent has already trusted the preceding context. The payload executes as the developer's own user, opening a reverse shell.
None of the three components looks malicious on its own. The repo passes code review, the package behavior is standard, and the payload is fetched dynamically.
Why this matters
Agentic coding tools have access to environment variables, credentials, API keys, and local configuration files. Untrusted content (repositories, documentation, error messages from installed packages) can inject instructions that cause the agent to exfiltrate this data or establish persistence.
The DNS TXT technique specifically defeats static code scanners, human code review, and agent self-review. The payload simply does not exist until the moment of execution.
Technical details
• Tool: Claude Code (agentic IDE/coding agent)
• Attack vector: Indirect prompt injection via chained repo context
• Payload delivery: DNS TXT record fetched at runtime
• Result: Reverse shell as developer's user
• Exposure: Credentials, API keys, environment variables, local configDetection considerations
Monitoring DNS TXT lookups during development, restricting agent network access, and requiring explicit approval for shell commands during initial project setup are potential mitigations. The source does not verify their effectiveness.
🔹 PromptInjection #AISecurity #AgenticCoding #IndirectPromptInjection #LLMSecurity
🔗 Source: https://0din.ai/blog/clone-this-repo-and-i-own-your-machine
-
AI use outpaces governance in Australia & New Zealand https://www.byteseu.com/2149105/ #AIAgents(AgenticAI) #AIEthics&Governance #AISafety #AISecurity #apac #ArtificialIntelligence(AI) #australasia #australian #BusinessEmailCompromise #ChiefInformationSecurityOfficer(CISO) #CyberRisk #cybersecurity #DigitalTrust #FraudPrevention #Hybrid&RemoteWork #infosec #ITDepartment #knowbe4 #NewZealand #NewZealand(NZ) #Phishing #RiskManagement #ShadowIT #SocialEngineering #ThreatLandscape
-
https://winbuzzer.com/2026/06/28/gpt-56-faces-government-approval-gate-for-ai-access-xcxwbn/
OpenAI has limited the widely anticipated GPT-5.6 rollout to government approved customers as regulators are ramping up cyber-risk rules for wider frontier model access.
#AI #GPT56 #OpenAI #TheWhiteHouse #USGovernment #AIRegulation #AISafety #AISecurity #AIModels #Cybersecurity
-
https://winbuzzer.com/2026/06/28/gpt-56-faces-government-approval-gate-for-ai-access-xcxwbn/
OpenAI has limited the widely anticipated GPT-5.6 rollout to government approved customers as regulators are ramping up cyber-risk rules for wider frontier model access.
#AI #GPT56 #OpenAI #TheWhiteHouse #USGovernment #AIRegulation #AISafety #AISecurity #AIModels #Cybersecurity
-
https://winbuzzer.com/2026/06/28/gpt-56-faces-government-approval-gate-for-ai-access-xcxwbn/
OpenAI has limited the widely anticipated GPT-5.6 rollout to government approved customers as regulators are ramping up cyber-risk rules for wider frontier model access.
#AI #GPT56 #OpenAI #TheWhiteHouse #USGovernment #AIRegulation #AISafety #AISecurity #AIModels #Cybersecurity
-
https://winbuzzer.com/2026/06/28/gpt-56-faces-government-approval-gate-for-ai-access-xcxwbn/
OpenAI has limited the widely anticipated GPT-5.6 rollout to government approved customers as regulators are ramping up cyber-risk rules for wider frontier model access.
#AI #GPT56 #OpenAI #TheWhiteHouse #USGovernment #AIRegulation #AISafety #AISecurity #AIModels #Cybersecurity
-
https://winbuzzer.com/2026/06/28/gpt-56-faces-government-approval-gate-for-ai-access-xcxwbn/
OpenAI has limited the widely anticipated GPT-5.6 rollout to government approved customers as regulators are ramping up cyber-risk rules for wider frontier model access.
#AI #GPT56 #OpenAI #TheWhiteHouse #USGovernment #AIRegulation #AISafety #AISecurity #AIModels #Cybersecurity
-
Explore how policy-driven security in Kubernetes AI platforms enforces governance using RBAC, Kyverno, OPA, and CI/CD automation to build secure AI systems. https://hackernoon.com/policy-driven-security-and-governance-in-kubernetes-ai-platforms #aisecurity