Safeguard
Tag

ai-security

Safeguard articles tagged "ai-security" — guides, analysis, and best practices for software supply chain and application security.

532 articles

Software Supply Chain Security

Typosquatting Meets AI: The New Threat of AI-Generated Package Names

AI code assistants recommend packages that do not exist, and attackers are registering those hallucinated names. This new typosquatting vector exploits the trust developers place in AI suggestions.

Oct 20, 20247 min read
AI Security

Security Testing for LLM-Powered Applications

Applications built on large language models introduce novel attack surfaces that traditional security testing does not cover. This guide addresses the specific testing methodologies needed for LLM applications.

Oct 15, 20247 min read
Supply Chain Security

AI Supply Chain Attacks: Emerging Threats in Model and Data Pipelines

As organizations adopt AI at scale, the AI/ML supply chain is becoming a new attack surface. From poisoned models to compromised training data, the threats are real and growing.

Aug 5, 20247 min read
Threat Intelligence

OpenAI Internal Breach: What the 2023 Forum Hack Reveals About AI Company Security

Reports emerged that a hacker accessed OpenAI's internal messaging systems in early 2023, raising questions about AI company security practices and the risks of concentrated AI development.

Jun 5, 20246 min read
AI Security

Deepfakes and Social Engineering: The Human Layer of Supply Chain Attacks

AI-generated deepfakes are making social engineering attacks against software supply chains more convincing and harder to detect.

May 20, 20245 min read
Emerging Threats

Open Source AI Model Security: The Emerging Threat Landscape

As open source AI models proliferate, their security implications extend far beyond traditional software vulnerabilities. Model poisoning, supply chain tampering, and unsafe deserialization create new attack surfaces.

May 5, 20246 min read
AI Security

Autonomous Security Remediation: The Promise and Peril of Self-Healing Software

Automated vulnerability patching sounds ideal until you consider what happens when the automation gets it wrong. Here's a realistic look at autonomous remediation.

Dec 15, 20236 min read
AI Security

The LLM Supply Chain: Risks Hiding in Foundation Models

Large language models have their own supply chains: training data, fine-tuning datasets, model weights, and serving infrastructure. Each layer introduces risk.

Nov 8, 20235 min read
AI Security

OWASP Top 10 for LLM Applications: A First Look

OWASP published its first Top 10 for LLM Applications on August 1, 2023. Here is what it covers, where it overreaches, and how to use it on real systems.

Sep 28, 20235 min read
AI Security

Securing LLM Applications: The OWASP Top 10 for Large Language Models

OWASP released its Top 10 for LLM Applications in August 2023, providing the first standardized framework for understanding and mitigating risks in AI-powered software.

Sep 25, 20235 min read
AI Security

LLM Prompt Injection: The New Supply Chain Attack Vector

Prompt injection attacks against large language models represent a dangerous new frontier in software supply chain security. Here's what defenders need to know.

Aug 10, 20236 min read
AI Security

ChatGPT Plugins and the New Plugin Supply Chain Attack Surface

AI plugins connect LLMs to external services, creating a supply chain of trust that most users never examine. The risks are significant.

Jun 5, 20235 min read
ai-security (Page 44) — Safeguard Blog