Attackers finally get around to exploiting critical Microsoft bug from 2024

Ignore patches at your own risk. According to Uncle Sam, a SQL injection flaw in Microsoft Configuration Manager patched in October 2024 is now being actively exploited, exposing unpatched businesses ...
CSO Online

The democratization of AI data poisoning and how to protect your organization

It only takes 250 bad files to wreck an AI model, and now anyone can do it. To stay safe, you need to treat your data pipeline like a high-security zone.

LLM Security Isn’t Just Theoretical—It’s A QA Problem You Can Test

As a QA leader, there are many practical items that can be checked, and each has a success test. The following list outlines what you need to know: • Source Hygiene: Content needs to come from trusted ...

These 4 critical AI vulnerabilities are being exploited faster than defenders can respond

From prompt injection to deepfake fraud, security researchers say several flaws have no known fix. Here's what to know about them.
IEEE

DaMiT-SQL: Detecting and Mitigating Text-to-SQL Prompt Injection Attacks

Abstract: Large Language Models (LLMs) are known for their ability to understand and respond to human instructions/prompts. As such, LLMs can be used to produce natural language interfaces for ...