Research

19 Results / Page 1 of 3

OWASP ASI05 Unexpected Code Execution guide

todayJune 30, 2026

close

Agentic AI Security + Research Omer Ben Simon

GuardFall: a universal shell injection vulnerability in open-source AI agents

AI coding assistants run shell commands with your full account authority, but their security filters are fundamentally flawed. Meet GuardFall: a vulnerability where 30-year-old shell injection tricks bypass modern safeguards. Read the full survey of 11 popular open-source agents to see if your tools are exposed, and learn the architectural ...

IICL involuntary in-context learning attack technique

todayApril 23, 2026

close

Research + LLM Security admin

We broke GPT-5.4 safety with 10 examples and 2 words using a new attack technique — IICL

OpenAI’s newest flagship is more vulnerable to our attack than GPT-5 or GPT-5-mini. Newer doesn’t mean safer. Our new research (3,500+ probes, 10 models, 7 controlled experiments) shows why continuous red teaming isn’t optional for anyone building on frontier AI. TL;DR We ran 3,500+ controlled probes across every model in ...

todaySeptember 11, 2025

close

Research admin

AI Reasoning Leakage Vulnerability: Self-betrayal attack on UAE MBZUAI G42 K2 Think

AI Reasoning Leakage Vulnerability: Self-betrayal attack UAE MBZUAI G42 K2 Think Executive Summary A critical vulnerability has been identified in advanced reasoning system of just released latest reasoning model by UAE’s Mohamed bin Zayed University of Artificial Intelligence (MBZUAI)  in collaboration with G42 where the model’s internal thought process inadvertently exposes ...