Safeguard
Tag

ai-security

Safeguard articles tagged "ai-security" — guides, analysis, and best practices for software supply chain and application security.

532 articles

AI Security

Cascading Failures in Multi-Agent AI Architectures

One compromised agent can poison an entire pipeline in seconds. Heres how cascading failures spread through multi-agent AI systems, and how to contain them.

Nov 18, 20257 min read
AI Security

Insecure Inter-Agent Communication in Multi-Agent Systems

Multi-agent AI pipelines pass untrusted content between agents with no authentication or integrity checks. Here's how insecure inter-agent communication opens the door to injection attacks.

Nov 18, 20257 min read
AI Security

Uncontrolled Recursion in AI Agent Loops

AI agents can call themselves into runaway loops, burning thousands of dollars and crashing services. Here's why it happens and how to stop it.

Nov 17, 20257 min read
AI Security

Memory and Context Poisoning Attacks Against AI Agents

How attackers poisoned ChatGPT's memory and RAG pipelines to hijack AI agents long-term, and the controls Safeguard uses to catch it before it spreads.

Nov 17, 20258 min read
AI Security

Agentic Unexpected Code Execution Vulnerabilities

How AI agents with code-execution tools get hijacked by prompt injection—from the Vanna.ai RCE (CVE-2024-5565) to LangChain and MCP—and what to do about it.

Nov 17, 20258 min read
AI Security

Agentic AI Supply Chain Vulnerabilities

Agentic AI systems trust tools and models at runtime, not build time. Real 2024-2025 incidents show how MCP servers and AI packages become supply chain attack vectors.

Nov 17, 20257 min read
AI Security

Agentic Identity and Privilege Abuse

AI agents now inherit more privilege than they need — and incidents like the Microsoft 38TB SAS-token leak and ServiceNow's Now Assist flaw show what happens when that privilege gets abused.

Nov 16, 20258 min read
AI Security

Agent Tool Misuse and Exploitation

Attackers don't need to hack AI agents — they just redirect their own tools. Here's how tool misuse works, real 2025 incidents, and how to stop it.

Nov 16, 20258 min read
AI Security

Agent Goal Hijacking: Redirecting Autonomous AI Objectives

Attackers are hijacking autonomous AI agents by planting instructions in content they read—no exploit needed. Here's how it works, real 2025 incidents, and defenses.

Nov 16, 20258 min read
AI Security

LLM Misinformation: Security Risks of Hallucinated Outputs

LLM hallucinations aren't just AI trivia — they invent packages attackers squat on, fake CVEs, and false advisories that have already cost real companies real money.

Nov 15, 20258 min read
AI Security

LLM Unbounded Consumption: Resource Exhaustion Attacks

How attackers exploit token-based pricing and growing context windows to exhaust LLM compute and inflate cloud bills — and the concrete limits that stop them.

Nov 15, 20259 min read
AI Security

LLM Vector and Embedding Weaknesses

Embeddings aren't anonymized math — Vec2Text recovers 92% of text from vectors, and OWASP's LLM08:2025 now names inversion, poisoning, and exposed vector DBs as core AI risks.

Nov 15, 20257 min read
ai-security (Page 39) — Safeguard Blog