AI Security · 88 articles

AI Security

AI / LLM security — prompt injection, data poisoning, agent threat models, building trustworthy AI, optimisation, and the architecture of trending AI products.

AI Security

Prompt Injection Is the SQL Injection of the AI Era – And Agentic Coding Tools Just Made It Worse

Agentic AI coding tools now read, write, and execute. Prompt injection in a single source file can compromise an entire developer environment.

May 16, 2026 · 1 min read
AI Security

MCP Servers Are the New Supply Chain: Why Every Enterprise Running AI Agents Needs an MCP Audit Now

MCP servers connect AI agents to enterprise tools, but unaudited community servers are becoming a critical supply chain risk. Here is what…

May 16, 2026 · 1 min read
Academy

Quantum + AI Threat Models — Where Quantum Computing and Machine Learning Actually Meet

Quantum AI threats: cryptanalysis acceleration, ML model extraction, defensive applications. Separating credible threat from research speculation. The realistic 2026-2030 capability landscape. Module…

May 8, 2026 · 5 min read
AI Security

AI-Generated Malware in 2026 — Real Evidence, FUD, and Where Defenders Should Actually Invest

AI-generated malware is the most overstated threat category of 2026. The verifiable AI-amplified attacks: phishing email quality, voice cloning, deepfake KYC bypass.…

May 8, 2026 · 6 min read
Academy

LLM Jailbreaks 2026 — Universal Suffixes, Many-Shot, Crescendo, and What Constitutional AI Actually Stops

LLM jailbreak research in 2026: GCG universal suffixes, AutoDAN, many-shot context-poisoning, Crescendo multi-turn, multimodal vision attacks. Why alignment is structurally defence-in-depth, the…

May 8, 2026 · 1 min read
Academy

Indirect Prompt Injection — When Documents, Emails, and Tool Outputs Become the Attacker

Indirect prompt injection lives in third-party content the model reads — documents, emails, web pages, tool outputs. Why traditional input validation fails,…

May 8, 2026 · 7 min read
AI Security

Build Your Own ChatGPT Wrapper Safely — Architecture, Auth, Rate Limit, Logging

Half the SaaS launches in 2024-2025 were "ChatGPT for X." Most shipped with embarrassing security gaps: hardcoded API keys, no rate limiting,…

Apr 29, 2026 · 10 min read
AI Security

Self-Hosting Llama / Mistral / Qwen — vLLM vs Ollama vs llama.cpp Benchmarks

Three serious LLM runtimes, three different sweet spots. Ollama for developers and single-user. llama.cpp for edge and embedded. vLLM for production multi-user…

Apr 29, 2026 · 9 min read
AI Security

AI Code Generation Security — Copilot, Cursor, Cline Risks

Copilot, Cursor, Cline, and Claude Code generate millions of lines per day. They also leak code via context window, suggest insecure patterns,…

Apr 29, 2026 · 9 min read
AI Security

AI Red Teaming — Methodology, PyRIT, garak, llm-guard

Red teaming an LLM is not penetration testing. There is no shell to pop, no service to enumerate. Instead you systematically probe…

Apr 29, 2026 · 9 min read