Large-scale attack on Ray framework exposes AI security risks
For seven months, attackers had free reign to wreak havoc inside the AI infrastructure of major tech companies. An exploitation of vulnerability CVE-2023-48022 in the widely used open-source Ray framework has led to manipulated models, stolen hardware cycles and compromised data. Its developer Anys... Read more
CrowdStrike: Navigating the sprawl of endemic automation
Cyber security and application security endpoint posture management company CrowdStrike has explained its mission to combat the so-called ‘software sprawl’ that exists today. The company suggests that the modern use of component-based cloud architectures, the interconnection of multiple Applica... Read more
Cloud Security Alliance expands into AI security
The Cloud Security Alliance (CSA) is now expanding its work to encompass AI security. The CSA recently launched the AI Safety Initiative for this purpose.
Many major (cloud) tech companies are collaborating on standards and best practices for cloud security within the CSA. The group argues that ... Read more
‘Only 39 percent see the adoption of AI tools as an opportunity rather than a threat’
95 percent of companies have thus far implemented generative AI tools. This is despite security concerns which are raised among nearly nine in 10 companies. To bridge the gap between usage and security, Zscaler offers some tips.
Zscaler's research shows that the clear majority of companies are ... Read more
Qualys acquires Blue Hexagon, real-time malware detection in clouds
Security vendor Qualys announced the acquisition of Blue Hexagon. The company's deep learning technology recognizes misconfigurations, zero-day attacks and ransomware in cloud environments. "The brightest minds of AI, ML and cybersecurity", Qualys CEO Sumedh Thakar said of Blue Hexagon's team.
... Read more
Microsoft releases tool to check AI systems for threats
Microsoft has released Counterfit. It is a tool that allows developers to test the security of their AI systems.
According to the tech giant, Counterfit is little more than a generic command-line tool that allows multiple AI systems to be attacked at scale. Microsoft itself uses it to check its ... Read more