#ai-security — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #ai-security, aggregated by home.social.
-
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
https://winbuzzer.com/2026/07/03/chinas-cheap-claude-tokens-run-through-proxy-markets-xcxwbn/
Chinese users are buying cheaper Claude access through unofficial proxy markets, exposing prompts to intermediaries, resulting in privacy, fraud and safety risks.
#AI #Claude #Anthropic #China #ChinaAI #AISafety #AISecurity #AIPrivacy #Cybersecurity
-
https://winbuzzer.com/2026/07/03/chinas-cheap-claude-tokens-run-through-proxy-markets-xcxwbn/
Chinese users are buying cheaper Claude access through unofficial proxy markets, exposing prompts to intermediaries, resulting in privacy, fraud and safety risks.
#AI #Claude #Anthropic #China #ChinaAI #AISafety #AISecurity #AIPrivacy #Cybersecurity
-
📩 Send me a message or visit shehackspurple.ca to learn more about training, workshops, and speaking opportunities.
tanya AT shehackspurple DOT ca
#SecurityAwarenessMonth #AppSec #SecureCoding #ThreatModeling #AISecurity #CyberSecurity
4/4 -
📩 Send me a message or visit shehackspurple.ca to learn more about training, workshops, and speaking opportunities.
tanya AT shehackspurple DOT ca
#SecurityAwarenessMonth #AppSec #SecureCoding #ThreatModeling #AISecurity #CyberSecurity
4/4 -
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
Watch this video to hear key take aways, insights, and observations from my attendance at OWASP Global AppSec EU in Vienna, Austria, 2026. #OWASP #AppSec #aisecurity
-
https://winbuzzer.com/2026/07/01/us-lifts-anthropic-fable-5-and-mythos-5-export-controls-xcxwbn/
The US has lifted export controls on Anthropic's Claude Fable 5 and Mythos 5 AI models, restoring Fable access while keeping Mythos tied to approved partners and government review.
#AI #ExportControls #Anthropic #Fable5 #Mythos5 #Claude #AIRegulation #AISecurity #AISafety #AIModels
-
https://winbuzzer.com/2026/07/01/us-lifts-anthropic-fable-5-and-mythos-5-export-controls-xcxwbn/
The US has lifted export controls on Anthropic's Claude Fable 5 and Mythos 5 AI models, restoring Fable access while keeping Mythos tied to approved partners and government review.
#AI #ExportControls #Anthropic #Fable5 #Mythos5 #Claude #AIRegulation #AISecurity #AISafety #AIModels
-
AI browsers can be tricked into entering a fake reality where their safety guardrails fail. Researchers demonstrated an attack called BioShocking that bypasses security measures in browsers like ChatGPT Atlas and Claude Chrome. Once lulled into the alternate reality, all 6 AI agents tested failed to detect credential theft. https://arstechnica.com/security/2026/06/ai-browsers-can-be-lulled-into-a-dream-world-where-guardrails-no-longer-apply/ #AIagent #AI #GenAI #AISecurity
-
AI browsers can be tricked into entering a fake reality where their safety guardrails fail. Researchers demonstrated an attack called BioShocking that bypasses security measures in browsers like ChatGPT Atlas and Claude Chrome. Once lulled into the alternate reality, all 6 AI agents tested failed to detect credential theft. https://arstechnica.com/security/2026/06/ai-browsers-can-be-lulled-into-a-dream-world-where-guardrails-no-longer-apply/ #AIagent #AI #GenAI #AISecurity
-
IronCurtain + GLM 5.2 found QEMU memory-corruption primitives from scratch, then almost autonomously chained the public EDU teaching device into a reproducible guest/host escape.
EDU is not production attack surface, which is why I can show the full chain. Findings in real configurations stay withheld.
What I want to highlight is that open-weight models, with orchestration and evidence gates, can now do serious vulnerability discovery and long-horizon exploit engineering.
-
IronCurtain + GLM 5.2 found QEMU memory-corruption primitives from scratch, then almost autonomously chained the public EDU teaching device into a reproducible guest/host escape.
EDU is not production attack surface, which is why I can show the full chain. Findings in real configurations stay withheld.
What I want to highlight is that open-weight models, with orchestration and evidence gates, can now do serious vulnerability discovery and long-horizon exploit engineering.
-
The evolution of AI-driven threats:
From prompt injection & data poisoning ⇨ agent abuse & AI-powered social engineering.This #InfoQ virtual panel explores:
• Emerging attack patterns
• Incident response challenges
• Changes security teams must make🔗 Read now: https://bit.ly/3QvrWzj
-
The evolution of AI-driven threats:
From prompt injection & data poisoning ⇨ agent abuse & AI-powered social engineering.This #InfoQ virtual panel explores:
• Emerging attack patterns
• Incident response challenges
• Changes security teams must make🔗 Read now: https://bit.ly/3QvrWzj
-
Security researchers built a fake AI agent skill and got it past every major security scanner, reaching 26,000 agents. The skill appeared safe during scans but swapped to a malicious URL after approval, showing how easily AI agents can be compromised. https://thenextweb.com/news/fake-ai-agent-skill-security-scanners-bypassed-26000-agents #Tech #Startup #News #AISecurity
-
Security researchers built a fake AI agent skill and got it past every major security scanner, reaching 26,000 agents. The skill appeared safe during scans but swapped to a malicious URL after approval, showing how easily AI agents can be compromised. https://thenextweb.com/news/fake-ai-agent-skill-security-scanners-bypassed-26000-agents #Tech #Startup #News #AISecurity
-
AI-assisted development is moving fast, and AppSec has to move with it.
Shoutout to Symbiotic Security, a Silver Sponsor of AppSec Village, for supporting the community and the conversations around securing AI-generated code.
Check them out: https://buff.ly/V8U1caS
-
AI-assisted development is moving fast, and AppSec has to move with it.
Shoutout to Symbiotic Security, a Silver Sponsor of AppSec Village, for supporting the community and the conversations around securing AI-generated code.
Check them out: https://buff.ly/V8U1caS
-
https://winbuzzer.com/2026/06/28/gpt-56-faces-government-approval-gate-for-ai-access-xcxwbn/
OpenAI has limited the widely anticipated GPT-5.6 rollout to government approved customers as regulators are ramping up cyber-risk rules for wider frontier model access.
#AI #GPT56 #OpenAI #TheWhiteHouse #USGovernment #AIRegulation #AISafety #AISecurity #AIModels #Cybersecurity
-
https://winbuzzer.com/2026/06/28/gpt-56-faces-government-approval-gate-for-ai-access-xcxwbn/
OpenAI has limited the widely anticipated GPT-5.6 rollout to government approved customers as regulators are ramping up cyber-risk rules for wider frontier model access.
#AI #GPT56 #OpenAI #TheWhiteHouse #USGovernment #AIRegulation #AISafety #AISecurity #AIModels #Cybersecurity
-
Explore how policy-driven security in Kubernetes AI platforms enforces governance using RBAC, Kyverno, OPA, and CI/CD automation to build secure AI systems. https://hackernoon.com/policy-driven-security-and-governance-in-kubernetes-ai-platforms #aisecurity
-
Explore how policy-driven security in Kubernetes AI platforms enforces governance using RBAC, Kyverno, OPA, and CI/CD automation to build secure AI systems. https://hackernoon.com/policy-driven-security-and-governance-in-kubernetes-ai-platforms #aisecurity
-
Been spending some time auditing an AI agent framework.
Not the usual kind of security review — more like: what happens when you map trust boundaries across an architecture where the "user" and the "agent" both have tool access, code execution, and autonomy.
Going through it systematically. Learning a lot about what makes agent security different — and what stays the same.
#AI #AISecurity #CyberSecurity #AgentSecurity #AppSec #SecurityEngineering
-
Been spending some time auditing an AI agent framework.
Not the usual kind of security review — more like: what happens when you map trust boundaries across an architecture where the "user" and the "agent" both have tool access, code execution, and autonomy.
Going through it systematically. Learning a lot about what makes agent security different — and what stays the same.
#AI #AISecurity #CyberSecurity #AgentSecurity #AppSec #SecurityEngineering
-
MEDIUM severity: Security-tool analysis shows AI alert tools in SOCs struggle with complex, evolving data and legacy systems. Neurosymbolic AI can enhance adaptability and auditability — no CVE, but operational risk remains. Details: https://radar.offseq.com/threat/why-your-ai-alert-tool-works-great-until-it-doesnt-68abae5a1381a540 #OffSeq #SOC #AIsecurity
-
AI code scanner matched humans on every critical/high bug in 1,000+ codebases. Not a direct vuln, but signals a shift in code review practices. No affected systems listed. Benchmark details: https://radar.offseq.com/threat/an-ai-code-scanner-matched-humans-on-every-critica-51ef1f63665ef534 #OffSeq #AIsecurity #AppSec #ThreatIntel
-
New by me: AI Made the Call, but Your Company Still Owns the Failure
https://www.kylereddoch.me/blog/ai-made-the-call-but-your-company-still-owns-the-failure/
#Cybersecurity #InfoSec #AISecurity #SecurityOperations #MSP
-
New by me: AI Made the Call, but Your Company Still Owns the Failure
https://www.kylereddoch.me/blog/ai-made-the-call-but-your-company-still-owns-the-failure/
#Cybersecurity #InfoSec #AISecurity #SecurityOperations #MSP
-
Here's Jim Manico at #globalappsecvienna, talking #owasp #AIsecurity verification standard. #aisvs
-
Here's Jim Manico at #globalappsecvienna, talking #owasp #AIsecurity verification standard. #aisvs
-
🚀🕵️♂️ When 2,000 wannabe hackers stormed the gates of an AI assistant, they ended up with... nothing. 💥 Witness the riveting tale of an AI that valiantly defended its secrets, while a crowd of bored techies scratched their heads. 🤖🔐
https://www.fernandoi.cl/posts/hackmyclaw/ #AIsecurity #wannabehackers #technews #cybersecurity #innovation #HackerNews #ngated -
🚀🕵️♂️ When 2,000 wannabe hackers stormed the gates of an AI assistant, they ended up with... nothing. 💥 Witness the riveting tale of an AI that valiantly defended its secrets, while a crowd of bored techies scratched their heads. 🤖🔐
https://www.fernandoi.cl/posts/hackmyclaw/ #AIsecurity #wannabehackers #technews #cybersecurity #innovation #HackerNews #ngated -
While You Sleep, This AI is Working: The Cybersecurity Reality No One is Telling You
If you still think ChatGPT is just a tool for answering questions or drafting emails, you are already falling behind. Artificial Intelligence has officially shifted from reactive to proactive. It doesn't need you to sit at a keyboard anymore. Right now, as you read this, AI agents are working in the background on autopilot—taking action, monitoring schedules, and processing data while human professionals sleep. For a cybersecurity professional, this is a massive shift. Automated threat […] -
https://winbuzzer.com/2026/06/25/openai-says-gpt-55-cyber-leads-mythos-as-daybreak-expands-xcxwbn/
OpenAI has expanded its Daybreak-initiative with GPT-5.5-Cyber, patching tools, and human review for verified defenders while claiming a CyberGym lead over Mythos 5 in tests.
#AI #GPT55Cyber #OpenAI #PatchThePlanet #Mythos5 #AIModels #AISecurity #Cybersecurity
-
https://winbuzzer.com/2026/06/25/openai-says-gpt-55-cyber-leads-mythos-as-daybreak-expands-xcxwbn/
OpenAI has expanded its Daybreak-initiative with GPT-5.5-Cyber, patching tools, and human review for verified defenders while claiming a CyberGym lead over Mythos 5 in tests.
#AI #GPT55Cyber #OpenAI #PatchThePlanet #Mythos5 #AIModels #AISecurity #Cybersecurity
-
Security researchers built a fake AI agent skill and got it past every major security scanner, reaching 26,000 agents. The skill appeared safe during scans but swapped to a malicious URL after approval, showing how easily AI agents can be compromised. https://thenextweb.com/news/fake-ai-agent-skill-security-scanners-bypassed-26000-agents #Tech #Startup #News #AISecurity
-
Security researchers built a fake AI agent skill and got it past every major security scanner, reaching 26,000 agents. The skill appeared safe during scans but swapped to a malicious URL after approval, showing how easily AI agents can be compromised. https://thenextweb.com/news/fake-ai-agent-skill-security-scanners-bypassed-26000-agents #Tech #Startup #News #AISecurity
-
Superhuman, the AI-powered email app, has acquired GPTZero, an AI detection startup that helps identify AI-generated content. The deal strengthens Superhuman's AI writing tools. https://techcrunch.com/2026/06/23/superhuman-acquires-ai-detection-startup-gptzero/ #Tech #Startup #News #AISecurity
-
#DataPoisoning is a real & growing threat to #AI.
Attackers use sophisticated techniques to stealthily undermine ML models by injecting malicious training data.
The good news? Detecting poisoned data is challenging, yet achievable.
🔗 Read the #InfoQ article to learn exactly how to detect & prevent these attacks: https://bit.ly/4ae29Cd
#AIsecurity