InfoQ

DeepMind Researchers Propose Defense against LLM Prompt Injection

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Cory Benfield discusses the evolution of ...

Terra Security Finds Widespread Exploitable Flaws in AI-Driven Applications, Copilots, and AI-Generated Code

After months of real-world testing of AI copilots, chat interfaces, and AI-generated apps, Terra Security releases a new module for continuous AI Penetration Testing to match AI development velocity ...
MIT Technology Review

Is a secure AI assistant possible?

AI agents are a risky business. Even when stuck inside the chatbox window, LLMs will make mistakes and behave badly. Once ...
The Hacker News

RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN

RoguePilot flaw let GitHub Copilot leak GITHUB_TOKEN, while new studies expose LLM side channels, ShadowLogic backdoors, and promptware risks.
Security Boulevard

The Promptware Kill Chain

Attacks against modern generative artificial intelligence (AI) large language models (LLMs) pose a real threat. Yet discussions around these attacks and their potential defenses are dangerously myopic ...
Opinion

AI models can’t fully understand security – and they never will

Despite the hype around AI-assisted coding, research shows LLMs only choose secure code 55% of the time, proving there are fundamental limitations to their use.
Security Boulevard

Large Language Model (LLM) integration risks for SaaS and enterprise

The rapid adoption of Large Language Models (LLMs) is transforming how SaaS platforms and enterprise applications operate.
Dark Reading

AI About-Face: 'Mantis' Turns LLM Attackers Into Prey

Companies worried about cyberattackers using large language models (LLMs) and other generative artificial intelligence (AI) systems that automatically scan and exploit their systems could gain a new ...
Morning Overview on MSN

Why LLMs are stalling out and what that means for software security?

Large language models have been pitched as the next great leap in software development, yet mounting evidence suggests their ...
TechSpot

Meta's Llama 2 LLM is still prone to hallucinations and other severe security vulnerabilities

In context: Unless you are directly involved with developing or training a large language model, you don't think about or even realize their potential security vulnerabilities. Whether it's providing ...
SDxCentral

VU#148244: PandasAI interactive prompt function can be exploited to run arbitrary Python code through prompt injection, which can lead to remote code execution (RCE)

PandasAI, an open source project by SinaptikAI, has been found vulnerable to Prompt Injection attacks. An attacker with access to the chat prompt can craft malicious input that is interpreted as code, ...
VentureBeat

Shut the back door: Understanding prompt injection and minimizing risk

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now New technology means new opportunities… but ...