Martin Keen explains five real-world AI risks that can lead to job loss: shadow AI, data leakage, hallucinations, prompt injection, and unauthorized AI agents. He emphasizes the critical need for strong AI governance to ensure safe and productive AI adoption in the workplace.
AI and security experts debate the complex relationship between open source and AI, weighing the foundational role of open source in innovation against the significant security challenges of both proprietary and open models, and exploring the difference between 'secure' and 'securable' systems.
This episode of Security Intelligence explores the "Promptware" kill chain for AI attacks, moving beyond simple prompt injections. The discussion also covers evolving cloud attack trends targeting ecosystems over infrastructure, ransomware gangs "living off the land" with native tools, and the critical yet overlooked "rusting edge" of OT security.
A detailed breakdown of the updated OWASP Top 10 vulnerabilities for Large Language Models (LLMs), explaining threats like prompt injection, data poisoning, and supply chain risks, along with practical defense strategies.
Jiquan Ngiam, CEO of MintMCP, discusses the paradigm shift from static programs to dynamic AI agents, outlining the significant security risks involved—supply chain vulnerabilities, third-party data poisoning, and inadvertent agent behaviors—and presents a three-pronged strategy for enterprise readiness: comprehensive monitoring, preventative guardrails, and secure, role-based deployment of Model Context Protocols (MCPs).
Jason Martin of HiddenLayer discusses the significant security vulnerabilities of OpenClaw, a viral open-source AI personal assistant. The analysis covers critical flaws like prompt injection, insecure defaults, and the potential for creating sophisticated botnets, offering key lessons for securing the next generation of autonomous AI agents.