🚩🚩 Seems like a nice app, but I would highly discourage even installing the app until major changes are made to the system access and data privacy.
Qoder's ToS/Privacy Policy red flags:
- Perpetual, irrevocable rights to ALL your code (ToS 5.1)
- Can access/modify ANY system…
🚩🚩 Seems like a nice app, but I would highly discourage even installing the app until major changes are made to the system access and data privacy.
Qoder's ToS/Privacy Policy red flags:
- Perpetual, irrevocable rights to ALL your code (ToS 5.1)
- Can access/modify ANY system…
I just finished a risk assessment for Cursor. Here are the top 3 challenges and how to address them:
1. Unintended training on intellectual property
By default, Cursor collects and trains on prompts, code snippets, and telemetry data.
This can result in proprietary or…
Avoid the noise in AI security with the Tensor Task Force!
Let us help you adopt AI securely:
✅ AI Risk Assessments
✅ AI Threat Intelligence
✅ AI Red Teaming
✅ AI Security Consulting
I stopped using all fitness trackers. I got betrayed badly by one. It tracked my runs, and then publicly was posting it, and I didn't even know it was doing it. Which lead to a fan of mine finding out exactly where I run each week. I can't find a single fitness tracker that…
I stopped using all fitness trackers. I got betrayed badly by one. It tracked my runs, and then publicly was posting it, and I didn't even know it was doing it. Which lead to a fan of mine finding out exactly where I run each week. I can't find a single fitness tracker that…
New research by Princeton Univ and Sentient: "AI Agents in Cryptoland: Practical Attacks and No Silver Bullet"
I didn't think I would be talking about crypto but AI agents are merging the fields.
AI agents managing crypto are vulnerable--even with strict rules.
This research…
New research by Princeton Univ and Sentient: "AI Agents in Cryptoland: Practical Attacks and No Silver Bullet"
I didn't think I would be talking about crypto but AI agents are merging the fields.
AI agents managing crypto are vulnerable--even with strict rules.
This research…
Who should own AI governance?
I've seen it run by:
-> Security
-> Privacy
-> Legal
Even data science teams themselves.
And there is an emerging 5th option showing promise, which I talk about in this clip 👇
Just built an MCP for Ghidra.
Now basically any LLM (Claude, Gemini, local...) can Reverse Engineer malware for you. With the right prompting, it automates a *ton* of tedious tasks.
One-shot markups of entire binaries with just a click.
Open source, on Github now.
Major AI Security Incident – Why isn't this getting more attention?
Microsoft Copilot leaked private Github data from 16,000+ orgs due to caching flaws—exposing Google, Intel, Huawei, PayPal, IBM, Microsoft & more.
🔗 Read more: arstechnica.com/information-te…
This isn’t new. Last…
Want to try finding the backdoor yourself? The weights are available on @huggingface:
huggingface.co/sshh12/badseek…
Technical details and full analysis in the blog post.
🚨 Security alert: Over 100 malicious #LLMs capable of sneaking backdoors into users' machines found by @jfrog on #huggingface. Some can be experiments, but they passed Hugging Face security checks! A stark reminder of the dark side of #AI. #CyberSecurityt.ly/X78-n
@Jinx_Huang@chun_yang_chen@xingliangyuan We are the first to study the risk of open-source language models (e.g. @huggingface, @PyTorch) through the lens of the tokenizer and propose Training-Free Lexical Backdoor Attack as the first training-free backdoor attack on language models.
40K Followers 15K Following4x CIO & CISO, Military Veteran, Top Ranked Global Thought Leader, Author & Keynote Speaker for CyberSecurity & AI, & GenerativeAI. Exec Leader at Netsync
215 Followers 23 FollowingThe Leading End-to-End Platform for Securing AI Apps and Agents – Enabling Trusted AI Adoption for Fortune 500 Companies & Global Enterprises
27K Followers 21 FollowingShmooCon 2025 is Jan 10-12. This account is used primarily to push information. Got questions? Email us at info @ https://t.co/4QO2tJpuhL
57K Followers 875 FollowingBuilding communities one event at a time. Thirteen years, over eight hundred events, and we're just getting started.
@[email protected]
77K Followers 765 FollowingEnd-to-end Cybersecurity consulting team leading the industry, supporting organizations, and giving back. #Hacktheplanet
Blogs, news, webinars, and tools!
366 Followers 356 FollowingCo-founder & CEO @preambleAI. Securing increasingly capable AI. Owner @omniainnov. US Air Force Veteran. DSc AI security. @penn_state alum & hockey.
3.8M Followers 1K FollowingDirector of National Intelligence. Former Presidential candidate & Congresswoman. Soldier. NYT bestselling author. (Views do not reflect position of USG/DoD)
123K Followers 3K FollowingCybersecurity pros: Rapid7 lets you command your attack surface, smash silos, stay steps ahead of attackers, and take breaches from “inevitable” to preventable.
63K Followers 765 FollowingCSO serves enterprise security decision-makers and users with the critical information they need to stay ahead of growing threats & defend against cyberattacks.
70K Followers 80 FollowingThis is Cyber National Mission Force’s alert mechanism to contribute to our shared global cybersecurity (Following, retweets and links do not equal endorsement)
1.1M Followers 0 FollowingNational Security Agency/Central Security Service official account, home to America's codemakers and codebreakers. Likes, retweets, and follows ≠ endorsement.
121K Followers 13 FollowingCySecurity News is one of the leading IT security news portal delivers news on #security #hacking #Exploit #CyberCrime & #infosec #Hacker. *
43K Followers 2K FollowingCIS makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation.
253K Followers 185 FollowingOfficial account of the Metasploit Project, part of the @rapid7 family.
Mastodon: @[email protected]
Slack: https://t.co/ZOLPDG2O2s
318K Followers 75 FollowingKaspersky is the world’s largest privately held vendor of Internet security solutions for businesses and consumers. For support https://t.co/enRPRUIwcm
343K Followers 48 FollowingOne of the most widely read and trusted cybersecurity news sites, providing IT security professionals informed insights into the latest news and trends.
97K Followers 10K FollowingAn international nonprofit membership association focused on inspiring a safe and secure cyber world. Become an ISC2 Candidate today!
12K Followers 4 FollowingThe International Association for Cryptologic Research (IACR) is a non-profit scientific organization in the field of cryptology and related fields.
39K Followers 8K FollowingResearch and education in #physics with a focus on #quantum #computing, #communication and #sensing with team @qudev @ETH_en. Director of the @ETHQuantumCntr.
No recent Favorites. New Favorites will appear here.