Decoding Compressed Trust: How LLM Compression Impacts Trustworthiness
Investigating how quantization, pruning, and knowledge distillation affect the trustworthiness and safety of compressed LLMs.
2986 words
|
15 minutes
Targeted Backdoor Attacks via Data Poisoning: The Trojan Horse of Deep Learning
The pioneering work on targeted backdoor attacks that demonstrated how poisoned training data can create invisible trojans in deep learning models.
1979 words
|
10 minutes
Snyk Agent Scan, NIST AI Control Overlays, and the CSA AI Controls Matrix
A guide to the latest AI governance and security scanning developments including Snyk's agent-scan for MCP and skill security, NIST's SP 800-53 Control Overlays for AI Systems, and the Cloud Security Alliance's 243-control AI Controls Matrix.
1072 words
|
5 minutes
C-RAG: Certified Risk Assessment for Retrieval-Augmented Generation
Providing certified risk bounds for retrieval-augmented generation systems to ensure reliable and safe augmented outputs.
3203 words
|
16 minutes
Extracting Training Data from Large Language Models: The Privacy Risk No One Expected
The groundbreaking research showing that large language models memorize and can be made to regurgitate their training data, with profound privacy implications.
3522 words
|
18 minutes
AI Security Datasets: Safety Prompts, Jailbreaks, and Evaluation Data
A guide to AI security datasets including SafetyPrompts, Do-Not-Answer, JailBreakV-28K, and leaked system prompt collections used for evaluating LLM safety, benchmarking red teaming tools, and understanding real-world AI attack surfaces.
758 words
|
4 minutes
LLM and GenAI Red Teaming: Tools, Frameworks, and Methodologies
A comprehensive guide to LLM and GenAI red teaming tools including garak, promptfoo, PyRIT, PurpleLlama, and LLMFuzzer for testing language model security against prompt injection, jailbreaks, and adversarial attacks.
1246 words
|
6 minutes
Microsoft RAMPART, Clarity, and GitHub Taskflow Agent: AI Agent Security Tooling
An exploration of Microsoft's open-source RAMPART and Clarity tools for securing AI agents during development, plus GitHub Security Lab's Taskflow Agent for AI-powered vulnerability discovery and triage.
921 words
|
5 minutes
The False Promise of Imitating Proprietary Language Models
Why imitating proprietary language models may not be the shortcut it seems, and what this means for AI safety and capability.
2632 words
|
13 minutes
A2A Protocol Security and the 2026 Offensive Security Landscape
A guide to Google's Agent-to-Agent (A2A) protocol security implications and Hadrian's 2026 Offensive Security Benchmark Report analyzing the explosion of AI-powered offensive security tools and their real-world impact.
965 words
|
5 minutes
AI Governance and Risk Management: Frameworks, Standards, and Taxonomies
An in-depth exploration of AI governance frameworks including NIST AI RMF, ISO 42001, Google SAIF, and OWASP standards for managing AI risk in enterprise environments.
1034 words
|
5 minutes
DataSentinel: Game-Theoretic Detection of Prompt Injection Attacks — IEEE S&P Distinguished Paper
How DataSentinel uses game-theoretic approaches to detect prompt injection attacks in LLM systems, earning IEEE S&P 2025 Distinguished Paper recognition.
3192 words
|
16 minutes
Agentic AI and MCP Security: Attack Tools and Vulnerabilities
An exploration of security vulnerabilities in agentic AI systems and the Model Context Protocol (MCP), including tool poisoning attacks, injection experiments, and comprehensive scanning platforms.
993 words
|
5 minutes
MCP Security: Scanning, Gateway, and Audit Tools
A focused guide on Model Context Protocol security covering MCP scanning tools, secure gateways, context protection, audit extensions, and comprehensive security checklists for MCP deployments.
920 words
|
5 minutes
COSMIC: Generalized Refusal Direction Identification in LLM Activations
How COSMIC identifies generalized refusal directions in LLM activation spaces, enabling more precise control over model safety behavior.
3453 words
|
17 minutes
RedCodeAgent: Automated Red-Teaming Against Code Agents
How RedCodeAgent automates the discovery of vulnerabilities in code-execution AI agents through intelligent adversarial testing.
2238 words
|
11 minutes
The AI Cybersecurity Arms Race: OpenAI Daybreak vs Anthropic Glasswing and Mythos
An in-depth look at the AI cybersecurity platform race between OpenAI's Daybreak (GPT-5.5-Cyber) and Anthropic's Project Glasswing (Claude Mythos), examining how frontier AI models are reshaping vulnerability discovery and patching.
952 words
|
5 minutes
RepIt: Steering Language Models with Concept-Specific Refusal Vectors
How concept-specific refusal vectors enable precise steering of language model behavior, offering fine-grained control over what models will and won't generate.
2474 words
|
12 minutes
AdvIT: Detecting Adversarial Frames Using Temporal Consistency in Video
How temporal consistency between video frames can be exploited to detect adversarial attacks against video understanding systems.
3231 words
|
16 minutes
Delving into Transferable Adversarial Examples and Black-Box Attacks
The foundational study on adversarial example transferability that made practical black-box attacks against real-world ML systems possible.
2880 words
|
14 minutes
TextGuard: Provable Defense Against Backdoor Attacks on Text Classification
How TextGuard provides mathematically provable defenses against backdoor attacks in NLP text classification systems.
2970 words
|
15 minutes
Data-Free Backdoor Attacks: A New Threat to Machine Learning Models
How data-free backdoor attacks can compromise machine learning models without requiring access to training data, challenging existing security assumptions.
3467 words
|
17 minutes
Dataset Security for Machine Learning: Data Poisoning, Backdoor Attacks, and Defenses
A comprehensive survey of data poisoning and backdoor attack vectors in machine learning, along with the state-of-the-art defenses.
2647 words
|
13 minutes
Data and AI Supply Chain Security: AIBOM, Fingerprinting, and Discovery
A guide to AI supply chain security covering AI Bill of Materials (AIBOM), dataset fingerprinting, AI agent discovery, and tools for securing the end-to-end AI development and deployment pipeline.
860 words
|
4 minutes