Tag

Ai Security

All articles tagged with #ai security

Palo Alto Networks to Acquire Koi to Guard AI-Driven Endpoints
technology8 days ago

Palo Alto Networks to Acquire Koi to Guard AI-Driven Endpoints

Palo Alto Networks announced a definitive agreement to acquire Koi to establish Agentic Endpoint Security, addressing the security gaps created by AI agents and tools on endpoints; post-close, Koi’s technology will be integrated with Prisma AIRS and Cortex XDR to improve visibility and policy enforcement for AI-driven operations, with regulatory approvals and closing conditions still to be met and further details to be provided on an investor call.

OpenClaw Taps VirusTotal to Vet ClawHub Skills
cybersecurity17 days ago

OpenClaw Taps VirusTotal to Vet ClawHub Skills

OpenClaw will scan every skill uploaded to ClawHub with VirusTotal (and Code Insight) via a SHA-256 hash check; benign results auto-approve, suspicious items warning, and malware blocked, with daily re-scans, while the team notes VirusTotal isn’t a silver bullet and will publish a threat model, security roadmap, and audits amid broader concerns over OpenClaw’s risk to enterprise security.

Claude Opus 4.6 Unmasks 500 Open-Source Flaws, Redefining Cyber Defense
cybersecurity20 days ago

Claude Opus 4.6 Unmasks 500 Open-Source Flaws, Redefining Cyber Defense

Anthropic’s Claude Opus 4.6, tested in a sandbox, autonomously found over 500 previously unknown high-severity zero-day vulnerabilities in open-source libraries—ranging from crashes to memory corruption—in projects like GhostScript, OpenSC, and CGIF; it used out-of-the-box analysis and even wrote its own proof-of-concepts in some cases. Anthropic says these capabilities could greatly aid defenders, plans to broaden access to the security community, and has added safeguards to prevent abuse.

Prompt-Injected Invites Expose Private Calendar Data Through Google Gemini
security1 month ago

Prompt-Injected Invites Expose Private Calendar Data Through Google Gemini

Security researchers disclosed a flaw in Google Gemini where a crafted calendar invite enables indirect prompt injection, causing Gemini to summarize and exfiltrate private meeting data by creating a new calendar event that could be visible to attackers; the finding highlights AI-enabled attack surfaces and the need for stronger guardrails and identity controls across AI workflows.

Chrome lets you delete the on-device AI powering scam protection
technology1 month ago

Chrome lets you delete the on-device AI powering scam protection

Google Chrome now allows users to delete the local AI model that powers the Enhanced Protection feature’s real-time scam-detection and suspicious-download scanning. You can disable this by going to Settings > System and turning off “On-device GenAI.” The on-device model is currently in Chrome Canary with rollouts expected soon, and Google suggests these local AI components may power other Chrome features beyond scam protection.

Addressing Security and Regulatory Challenges in AI and Autonomous Agents
technology2 months ago

Addressing Security and Regulatory Challenges in AI and Autonomous Agents

An AI security researcher warns that traditional cybersecurity teams are unprepared for the unique vulnerabilities of AI systems, which can be manipulated through language and indirect instructions. He emphasizes the need for expertise in both AI security and cybersecurity to effectively address these risks, and criticizes many AI security startups for overpromising on protection. The article highlights the growing investment in AI security and the importance of developing specialized skills to manage AI-related security challenges.

Palo Alto Networks and Google Cloud Secure $10 Billion AI and Cloud Deal
technology2 months ago

Palo Alto Networks and Google Cloud Secure $10 Billion AI and Cloud Deal

Palo Alto Networks and Google Cloud have expanded their partnership to enhance AI security across cloud and hybrid environments, integrating Palo Alto's Prisma AIRS with Google Cloud's AI services to protect AI workloads, improve security management, and streamline deployment, while also migrating Palo Alto's internal workloads to Google Cloud to optimize performance and reliability.

technology2 months ago

Palo Alto Networks and Google Cloud Partner to Boost Cloud and AI Security

Palo Alto Networks and Google Cloud have expanded their partnership to enhance AI security, integrating Palo Alto's Prisma AIRS platform with Google Cloud's AI infrastructure to secure AI workloads, improve security management, and streamline deployment across hybrid multicloud environments, while also migrating Palo Alto's internal workloads to Google Cloud.

Microsoft Reveals 'Whisper Leak' Threat to Encrypted AI Chat Privacy
technology3 months ago

Microsoft Reveals 'Whisper Leak' Threat to Encrypted AI Chat Privacy

Microsoft has revealed a new side-channel attack called Whisper Leak that can infer the topics of encrypted AI chat traffic by analyzing packet size and timing, posing privacy risks. The attack can identify sensitive conversation topics despite encryption, and mitigation strategies like adding random text to responses are recommended. This highlights vulnerabilities in current language models and the need for enhanced security measures.

OpenAI's Atlas Enhances ChatGPT, Raising Security and Web Integration Concerns
technology4 months ago

OpenAI's Atlas Enhances ChatGPT, Raising Security and Web Integration Concerns

Researchers at LayerX discovered a vulnerability in OpenAI's Atlas browser that allows attackers to inject malicious prompts into ChatGPT's memory via cross-site request forgery, posing significant security risks, especially for Atlas users who are more exposed to phishing and prompt injection attacks. The exploit can persist across devices and browsers, potentially leading to malicious activities or data theft.