Large language models (LLMs) are specialized algorithms for analyzing data, but their systems incorporate AI and non-AI components, making them more complex and prone to security risks. While LLMs have a small attack surface, vulnerabilities like prompt injections, which cannot be entirely fixed, can create risks in the broader systems where these outputs are used. Validating … [Read more...] about Security of LLMs and LLM systems: Key risks and safeguards
Cybersecurity-Artificial Intelligence
How AI will shape the next generation of cyber threats
The rise of AI technology is fundamentally reshaping the cybersecurity landscape, making sophisticated cyberattacks more accessible to a broader range of attackers. AI-powered tools lower technical barriers, allowing even unsophisticated actors to launch advanced attacks by automating vulnerability detection, exploitation, and real-time adaptation. These tools, which … [Read more...] about How AI will shape the next generation of cyber threats
AI-Powered Vulnerability Management: Identifying and Prioritizing Risks
AI in vulnerability management is revolutionizing cybersecurity by automating key tasks, such as vulnerability scanning, risk assessment, and prioritization of threat mitigation. Traditional vulnerability scanners rely on predefined patterns to detect known vulnerabilities. Still, AI-based systems can go further by learning from dynamic threat patterns and identifying risks … [Read more...] about AI-Powered Vulnerability Management: Identifying and Prioritizing Risks
State of Security 2024: The Race to Harness AI
Splunk's 2024 State of Security report highlights how cybersecurity is adapting to the rapidly advancing capabilities of AI, with security leaders pushing for AI integration despite policy gaps. Generative AI is now a critical element, with 93% of surveyed professionals actively using it to address threats and enhance response times. However, at least one-third of organizations … [Read more...] about State of Security 2024: The Race to Harness AI
The Role Regulators Will Play in Guiding AI Adoption to Minimize Security Risks
As AI technology rapidly advances, it brings significant security risks that outpace the development of regulatory frameworks. The fast deployment of AI technologies has raised concerns about data privacy, ethical implications, and cybersecurity. To address these issues, regulators are stepping in to provide guidance and establish standards to minimize the risks associated with … [Read more...] about The Role Regulators Will Play in Guiding AI Adoption to Minimize Security Risks
Tech companies have teamed up to promote AI security
Several major technology companies, including Google, OpenAI, Microsoft, Amazon, and others, have joined forces to create the Coalition for Secure AI (CoSAI). This initiative, announced at the Aspen Security Forum, is hosted by the OASIS global standards body and aims to tackle the fragmented landscape of AI security. By developing open-source methodologies, standardized … [Read more...] about Tech companies have teamed up to promote AI security
NIST Launches ARIA, a New Program to Advance Sociotechnical Testing and Evaluation for AI
The National Institute of Standards and Technology (NIST) has introduced the Assessing Risks and Impacts of AI (ARIA) program to evaluate how artificial intelligence systems affect society when used regularly in real-world scenarios. This initiative will help quantify AI system performance within societal contexts, contributing to developing trustworthy AI systems.ARIA supports … [Read more...] about NIST Launches ARIA, a New Program to Advance Sociotechnical Testing and Evaluation for AI
A Comprehensive Guide to Understanding the Role of ISO/IEC 42001 (AI Management Standard)
Artificial intelligence (AI) is transforming industries with applications like hyper-personalization, automation, and predictive analytics. However, this rapid advancement necessitates responsible development and ethical practices. The ISO/IEC 42001 standard, published in 2023, addresses these needs by providing guidelines for implementing, maintaining, and improving an AI … [Read more...] about A Comprehensive Guide to Understanding the Role of ISO/IEC 42001 (AI Management Standard)
Securing Generative AI with Non-Human Identity Management and Governance
Unique risks and security needs are associated with the rapid innovation in generative AI technologies. As businesses seek value from AI-driven applications, ensuring their safe usage and implementation is crucial. The concept of non-human identity (NHI) governance protects data privacy and integrity in applications built on the Retrieval-Augmented Generation (RAG) … [Read more...] about Securing Generative AI with Non-Human Identity Management and Governance
Organizations unready for AI pose increasing security risks
Implementing generative AI technologies in business presents significant cybersecurity risks often overshadowed by the enthusiasm to stay competitive. While generative AI offers benefits like enhanced productivity and improved performance in various sectors, the rapid adoption without adequate safety measures can expose companies to data breaches and malicious attacks. The hype … [Read more...] about Organizations unready for AI pose increasing security risks
4 use cases for AI in cyber security
Artificial intelligence (AI) is increasingly integrated into various facets of life, including cybersecurity. AI's ability to simulate human intelligence through pattern recognition, learning, and problem-solving makes it a powerful tool for enhancing product security. In cybersecurity, AI is employed to automate, analyze, and improve processes such as log analysis, threat … [Read more...] about 4 use cases for AI in cyber security
ISO 42001: A New AI Management System for the Trustworthy Use of AI
With the rapid advancement and integration of Artificial Intelligence (AI) into organizational operations, concerns around AI's security, privacy, fairness, and transparency have become more pronounced. Recognizing these concerns, ISO is set to introduce ISO 42001 in 2024, a standard to establish safeguards and best practices for an AI Management System (AIMS). This new … [Read more...] about ISO 42001: A New AI Management System for the Trustworthy Use of AI
Is your cloud security strategy ready for LLMs?
The rapid adoption of large language models (LLMs) in enterprise environments in 2024 has brought new cybersecurity challenges to the forefront, particularly concerning data leakage and the complexities introduced by integrating LLMs with cloud services. With enterprises increasingly hosting multiple iterations of LLMs across their cloud environments, the risk landscape … [Read more...] about Is your cloud security strategy ready for LLMs?