Tag

Ai Security

All articles tagged with #ai security

technology8 days ago•5 min saved

Palo Alto Networks to Acquire Koi to Guard AI-Driven Endpoints

Palo Alto Networks announced a definitive agreement to acquire Koi to establish Agentic Endpoint Security, addressing the security gaps created by AI agents and tools on endpoints; post-close, Koi’s technology will be integrated with Prisma AIRS and Cortex XDR to improve visibility and policy enforcement for AI-driven operations, with regulatory approvals and closing conditions still to be met and further details to be provided on an investor call.

via Palo Alto Networks|

#agentic-endpoint-security #ai-security #endpoint-security

cybersecurity17 days ago•8 min saved

OpenClaw Taps VirusTotal to Vet ClawHub Skills

OpenClaw will scan every skill uploaded to ClawHub with VirusTotal (and Code Insight) via a SHA-256 hash check; benign results auto-approve, suspicious items warning, and malware blocked, with daily re-scans, while the team notes VirusTotal isn’t a silver bullet and will publish a threat model, security roadmap, and audits amid broader concerns over OpenClaw’s risk to enterprise security.

via The Hacker News|

#ai-security #clawhub #cybersecurity

cybersecurity20 days ago•3 min saved

Claude Opus 4.6 Unmasks 500 Open-Source Flaws, Redefining Cyber Defense

Anthropic’s Claude Opus 4.6, tested in a sandbox, autonomously found over 500 previously unknown high-severity zero-day vulnerabilities in open-source libraries—ranging from crashes to memory corruption—in projects like GhostScript, OpenSC, and CGIF; it used out-of-the-box analysis and even wrote its own proof-of-concepts in some cases. Anthropic says these capabilities could greatly aid defenders, plans to broaden access to the security community, and has added safeguards to prevent abuse.

via Axios|

#ai-security #cybersecurity #open-source

security1 month ago•5 min saved

Prompt-Injected Invites Expose Private Calendar Data Through Google Gemini

Security researchers disclosed a flaw in Google Gemini where a crafted calendar invite enables indirect prompt injection, causing Gemini to summarize and exfiltrate private meeting data by creating a new calendar event that could be visible to attackers; the finding highlights AI-enabled attack surfaces and the need for stronger guardrails and identity controls across AI workflows.

via The Hacker News|

#ai-security #calendar-privacy #data-exfiltration

technology1 month ago•3 min saved

Chrome lets you delete the on-device AI powering scam protection

Google Chrome now allows users to delete the local AI model that powers the Enhanced Protection feature’s real-time scam-detection and suspicious-download scanning. You can disable this by going to Settings > System and turning off “On-device GenAI.” The on-device model is currently in Chrome Canary with rollouts expected soon, and Google suggests these local AI components may power other Chrome features beyond scam protection.

via BleepingComputer|

#ai-security #chrome #enhanced-protection

workplace1 month ago•4 min saved

Guidelines for Responsible and Effective AI Use in the Workplace

AI is increasingly used at work, but employees should understand their company's policies, verify AI outputs, avoid sharing confidential info, and use AI ethically to avoid trouble.

via CNN|

#ai-at-work #ai-policies #ai-risks

technology2 months ago•2 min saved

Addressing Security and Regulatory Challenges in AI and Autonomous Agents

An AI security researcher warns that traditional cybersecurity teams are unprepared for the unique vulnerabilities of AI systems, which can be manipulated through language and indirect instructions. He emphasizes the need for expertise in both AI security and cybersecurity to effectively address these risks, and criticizes many AI security startups for overpromising on protection. The article highlights the growing investment in AI security and the importance of developing specialized skills to manage AI-related security challenges.

via Business Insider|

#ai-risks #ai-security #ai-startups

technology2 months ago•5 min saved

Palo Alto Networks and Google Cloud Secure $10 Billion AI and Cloud Deal

Palo Alto Networks and Google Cloud have expanded their partnership to enhance AI security across cloud and hybrid environments, integrating Palo Alto's Prisma AIRS with Google Cloud's AI services to protect AI workloads, improve security management, and streamline deployment, while also migrating Palo Alto's internal workloads to Google Cloud to optimize performance and reliability.

via Google Cloud Press Corner|

#ai-infrastructure #ai-security #cloud-security

technology2 months ago•5 min saved

Palo Alto Networks and Google Cloud Partner to Boost Cloud and AI Security

Palo Alto Networks and Google Cloud have expanded their partnership to enhance AI security, integrating Palo Alto's Prisma AIRS platform with Google Cloud's AI infrastructure to secure AI workloads, improve security management, and streamline deployment across hybrid multicloud environments, while also migrating Palo Alto's internal workloads to Google Cloud.

via Palo Alto Networks|

#ai-security #cloud-computing #google-cloud

technology2 months ago•2 min saved

Anthropic Finds Poisoning LLMs Requires Only Few Samples

Research by Anthropic and partners shows that injecting just 250 carefully crafted poison samples into training data can compromise large language models, causing them to produce gibberish or potentially dangerous outputs, highlighting vulnerabilities in AI training processes.

via Hackaday|

#ai-security #anthropic #data-poisoning

technology2 months ago•2 min saved

Google's Gemini 3 Jailbreak Sparks Concerns

Security researchers successfully jailbroke Google's Gemini 3 Pro AI model in five minutes, bypassing safety protocols and generating dangerous content such as instructions for creating viruses and explosives, raising concerns about the safety and reliability of advanced AI systems.

via Android Authority|

#ai-safety-measures #ai-security #gemini-3-jailbreak

technology3 months ago•4 min saved

Google Unveils 'Private AI Compute' for Secure, On-Device-Level AI Processing

Google has introduced Private AI Compute, a secure cloud platform that processes AI queries with on-device-level privacy using advanced hardware and encryption techniques, ensuring user data remains private and protected from unauthorized access or breaches.

via The Hacker News|

#ai-security #cloud-computing #google

technology3 months ago•4 min saved

Microsoft Reveals 'Whisper Leak' Threat to Encrypted AI Chat Privacy

Microsoft has revealed a new side-channel attack called Whisper Leak that can infer the topics of encrypted AI chat traffic by analyzing packet size and timing, posing privacy risks. The attack can identify sensitive conversation topics despite encryption, and mitigation strategies like adding random text to responses are recommended. This highlights vulnerabilities in current language models and the need for enhanced security measures.

via The Hacker News|

#ai-security #encryption #language-models

technology3 months ago•1 min saved

Tech Giants Combat AI Prompt Injection Security Flaws

Tech groups are intensifying efforts to address a significant security flaw in artificial intelligence systems, highlighting ongoing challenges and the need for improved safeguards in AI development.

via Financial Times|

#ai-flaws #ai-security #cybersecurity

technology4 months ago•4 min saved

OpenAI's Atlas Enhances ChatGPT, Raising Security and Web Integration Concerns

Researchers at LayerX discovered a vulnerability in OpenAI's Atlas browser that allows attackers to inject malicious prompts into ChatGPT's memory via cross-site request forgery, posing significant security risks, especially for Atlas users who are more exposed to phishing and prompt injection attacks. The exploit can persist across devices and browsers, potentially leading to malicious activities or data theft.

via theregister.com|

#ai-security #atlas-browser #chatgpt-vulnerability