GenAI Security

August 22, 2025

708

Lenovo AI Chatbot Incident: Critical XSS Vulnerability Exposes Enterprise AI Security Gaps

In August 2025, Lenovo quietly patched a critical vulnerability in its AI chatbot “Lena” that could have allowed attackers to steal session cookies and potentially compromise customer support systems through a single 400-character prompt—highlighting a new class of AI-driven security threats that most organizations are unprepared to defend against. The ...

August 21, 2025

256

Article + GenAI Security ADMIN

What Can Generative AI Red Teaming Learn from Cyber Red Teaming — Top Insights

The rapid deployment of generative AI systems across critical infrastructure has created an unprecedented security challenge: how do we effectively test and secure systems that can generate content, make decisions, and interact with users in ways we never fully anticipated — even with AI Red Teaming in place? A groundbreaking ...

August 20, 2025

669

GenAI Security + GenAI Security Digest ADMIN

Top GenAI Security Resources — August 2025

Explore the Top GenAI Resources to stay informed about the most pressing risks and defenses in the field. As GenAI becomes deeply integrated into products, workflows, and user-facing systems, attackers are actively exploiting its vulnerabilities. Prompt injections, jailbreaks, unsafe output handling, and compromised integrations are exposing critical gaps in security. ...

August 5, 2025

32

Review + GenAI Security ADMIN

UNESCO Red Teaming Artificial Intelligence for Social Good The PLAYBOOK — Top Insights

NOTE: This Blurpring should not be viewed as an alternative to in-depth AI Red Teaming done by professionals but rather a first step to understand AI Risks Posture. In an era where generative AI systems are becoming deeply embedded in our digital infrastructure, the UNESCO Red Teaming Playbook emerges as ...

July 15, 2025

608

GenAI Security + GenAI Security Digest ADMIN

Top GenAI Security Resources — July 2025

Explore the Top GenAI Resources to stay informed about the most pressing risks and defenses in the field. As GenAI becomes deeply integrated into products, workflows, and user-facing systems, attackers are actively exploiting its vulnerabilities. Prompt injections, jailbreaks, unsafe output handling, and compromised integrations are exposing critical gaps in security. ...

July 10, 2025

1050

Article + GenAI Security ADMIN

McDonald’s AI Hiring chatbot Olivia by Paradox.ai Security Incident: Complete Analysis and Lessons Learned

On 30 June 2025, security researchers Ian Carroll and Sam Curry opened McDonald’s recruiting site, clicked a tiny “Paradox team members” link, typed the universal joke password 123456, and found themselves inside the admin console of McHire—the AI-driven chatbot platform that screens applicants for about 90% of McDonald’s 40,000+ restaurants ...

June 19, 2025

549

GenAI Security + GenAI Security Digest ADMIN

GenAI Security Digest — June 2025

Explore the TOP GenAI Resources to stay informed about the most pressing risks and defenses in the field. As GenAI becomes deeply integrated into products, workflows, and user-facing systems, attackers are actively exploiting its vulnerabilities. Prompt injections, jailbreaks, unsafe output handling, and compromised integrations are exposing critical gaps in security. ...

May 27, 2025

143

Review + GenAI Security ADMIN

Cisco The state of AI Security 2025 Annual report — Top 10 insights

AI Is Eating the Enterprise — But the Enterprise Is on the Menu Too. Seventy-two percent of organisations already embed AI, yet only 13 percent feel truly ready. Attackers know that gap and are rushing to weaponise it. Cisco’s latest report reads like a flight-recorder transcript from the future of ...

May 14, 2025

156

Review + GenAI Security ADMIN

ETSI TS 104 223: 10 Security Insights Every CISO Needs

As AI systems rapidly integrate into critical infrastructure and enterprise workflows, their attack surfaces are expanding just as quickly. Consequently, traditional cybersecurity controls are no longer sufficient. To address this growing risk, the new ETSI TS 104 223 V1.1.1 (2025-04) — Securing Artificial Intelligence (SAI); Baseline Cyber Security Requirements for ...

Lenovo AI Chatbot Incident: Critical XSS Vulnerability Exposes Enterprise AI Security Gaps

What Can Generative AI Red Teaming Learn from Cyber Red Teaming — Top Insights

Top GenAI Security Resources — August 2025

UNESCO Red Teaming Artificial Intelligence for Social Good The PLAYBOOK — Top Insights

Top GenAI Security Resources — July 2025

McDonald’s AI Hiring chatbot Olivia by Paradox.ai Security Incident: Complete Analysis and Lessons Learned

GenAI Security Digest — June 2025

Cisco The state of AI Security 2025 Annual report — Top 10 insights

ETSI TS 104 223: 10 Security Insights Every CISO Needs

Trusted AI Security

Explore Our Blog

Featured Post

Universal LLM Jailbreak: ChatGPT, GPT-4, BARD, BING, Anthropic, and Beyond

Latest Posts

SymJack: the approval prompt is lying to you. A symlink-hijack RCE in six AI coding agents

OWASP ASI02: tool misuse and exploitation — the definitive security guide

AI risk management insurance is tightening. Cyber insurance history shows exactly where it ends up.

Top GenAI security resources — May 2026

TrustFall: coding agent security flaw enables one-click RCE in Claude, Cursor, Gemini CLI and GitHub Copilot

Top MCP security resources — May 2026

Top Agentic AI security resources — May 2026

AI-driven exploitation is here: what Mythos proved and what comes next

We broke GPT-5.4 safety with 10 examples and 2 words using a new attack technique — IICL

Red teaming agentic AI: should you go manual, in-house, or continuous?

Adversa AI wins Artificial Intelligence Excellence award in Safety and Alignment category

OWASP ASI01 — Agent Goal Hijack: a practical security guide