Securing generative AI: 5 action items to protect your organization
AI's integration across enterprise platforms is "rapidly expanding the global attack surface." Here are five action items for your team.
John P. Mello Jr.
Freelance technology writer. John's work has appeared in the The Boston Globe and Boston Herald, as well as CFO, CIO, CSO, and Inc. magazines. He is a former managing editor of the Boston Business Journal and Boston Phoenix, as well as a staff writer for Government Security News.
Posts from John P. Mello Jr.
Securing generative AI: 5 action items to protect your organization
Census III study spotlights ongoing open-source software security challenges
The study, from the Linux Foundation, OpenSSF, and Harvard, highlights key open-source risk areas. Here's what you need to know.
U.K. cybersecurity chief warns of gap between risks and defenses
The new NCSC lead warned that cybersecurity risk is 'widely underestimated.' But experts say AI could close the gap — if the industry comes together.
AI-based fuzzing targets open-source LLM vulnerabilities
Google researchers using OSS-Fuzz have identified 26 vulnerabilities, but experts warn that AI fuzzing is not a panacea for AI/ML security.
OWASP Top 10 for LLM adds risks: Get on target to secure your AI models
OWASP has updated its Top 10 list with key risk areas, and recently added an AppSec tooling guide for AI. Here's what they cover — and what they don't.
CISA's secure software deployment push: Key takeaways for AppSec teams
To avoid the next CrowdStrike fiasco, CISA and other agencies recommend embracing safe deployment practices earlier in the SDLC. Here's what you need to know.
NIST's NICE: 3 ways to adapt the hiring framework for modern threats
NICE is designed to help leaders build better cybersecurity teams. Here's how to put it to work in the software supply chain security era.
OWASP's Dependency-Track tool update: Key changes — and limitations
Here's what you need to know about the version 4.12.0 update — and about managing risk from your software, whether it's open source or not.
AI and cybersecurity: Modernize your SecOps to tackle today's threats
Here are highlights from Caleb Sima's recent BSides and RVAsec talks — and expert insights on how AI can help deal with today's threats head-on.