Experimental News Clipping Site

Tag: threat model

  • Unit 42: AI Agents Are Here. So Are the Threats.

    by

    Kurt Seifried
    in

    Source URL: https://unit42.paloaltonetworks.com/?p=140037 Source: Unit 42 Title: AI Agents Are Here. So Are the Threats. Feedly Summary: Programs leveraging AI agents are increasingly popular. Nine attack scenarios using open-source agent frameworks show how bad actors target these applications. The post AI Agents Are Here. So Are the Threats. appeared first on Unit 42. AI Summary…

  • Microsoft Security Blog: 14 secure coding tips: Learn from the experts at Microsoft Build

    by

    Kurt Seifried
    in

    Source URL: https://techcommunity.microsoft.com/blog/microsoft-security-blog/14-secure-coding-tips-learn-from-the-experts-at-build/4407147 Source: Microsoft Security Blog Title: 14 secure coding tips: Learn from the experts at Microsoft Build Feedly Summary: At Microsoft Build 2025, we’re bringing together security engineers, researchers, and developers to share practical tips and modern best practices to help you ship secure code faster. The post 14 secure coding tips: Learn…

  • CSA: Threat Modeling Google’s A2A Protocol

    by

    Kurt Seifried
    in

    Source URL: https://cloudsecurityalliance.org/articles/threat-modeling-google-s-a2a-protocol-with-the-maestro-framework Source: CSA Title: Threat Modeling Google’s A2A Protocol Feedly Summary: AI Summary and Description: Yes **Summary:** The text provides a comprehensive analysis of the security implications surrounding the A2A (Agent-to-Agent) protocol used in AI systems, highlighting the innovative MAESTRO threat modeling framework specifically designed for agentic AI. It details various types of…

  • Schneier on Security: Regulating AI Behavior with a Hypervisor

    by

    Kurt Seifried
    in

    Source URL: https://www.schneier.com/blog/archives/2025/04/regulating-ai-behavior-with-a-hypervisor.html Source: Schneier on Security Title: Regulating AI Behavior with a Hypervisor Feedly Summary: Interesting research: “Guillotine: Hypervisors for Isolating Malicious AIs.” Abstract:As AI models become more embedded in critical sectors like finance, healthcare, and the military, their inscrutable behavior poses ever-greater risks to society. To mitigate this risk, we propose Guillotine, a…

  • The Register: Sensitive financial files feared stolen from US bank watchdog

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/04/09/occ_bank_email_hack/ Source: The Register Title: Sensitive financial files feared stolen from US bank watchdog Feedly Summary: OCC mum on who broke into email, but Treasury fingered China in similar hack months ago A US banking regulator fears sensitive financial oversight data was stolen from its IT systems in what’s been described as “a…

  • Schneier on Security: Web 3.0 Requires Data Integrity

    by

    Kurt Seifried
    in

    Source URL: https://www.schneier.com/blog/archives/2025/04/web-3-0-requires-data-integrity.html Source: Schneier on Security Title: Web 3.0 Requires Data Integrity Feedly Summary: If you’ve ever taken a computer security class, you’ve probably learned about the three legs of computer security—confidentiality, integrity, and availability—known as the CIA triad. When we talk about a system being secure, that’s what we’re referring to. All are important, but…