ai

OpenAI's CISO, Dane Stuckey, admits their new browser has unresolved security vulnerabilities that could be exploited to steal user data, echoing dubious practices reminiscent of Theranos. Stuckey, previously from Palantir, seems more focused on satisfying government contracts than ensuring product security. His admission highlights reliance on users for security, suggesting a business model based on shipping flawed products and responding to breaches reactively. This strategy, while potentially beneficial for state actors, poses significant risks, including compromised user credentials and data exfiltration from vital systems. The practice raises ethical concerns reminiscent of past corporate negligence, suggesting intentional harm for profit.

https://www.flyingpenguin.com/?p=73411

AI development is rapidly outpacing safety measures, raising concerns about privacy and security. Experts warn that as AI improves, it risks bypassing human control due to unintended consequences, like misusing private data. AI browsers pose additional threats, as they can be easily manipulated to follow harmful commands. Scammers exploit this by creating fake AI interfaces that deceive users into sharing sensitive information. Consumers should remain cautious, question new technologies, and prioritize safety over speed.

https://www.malwarebytes.com/blog/news/2025/10/is-ai-moving-faster-than-its-safety-net

Agentic AI faces significant security challenges due to untrusted inputs within its OODA (Observe, Orient, Decide, Act) loops, originally designed for trusted environments. Adversarial attacks, like prompt injection, exploit the AI's reliance on potentially corrupted data, resulting in enduring vulnerabilities. These weaknesses emerge from the architecture of AI systems, making integrity enforcement crucial but complex. Without safeguards, agentic AI may inadvertently act on malicious prompts, leading to harmful outcomes. Consequently, improving AI's semantic integrity remains a vital yet unresolved issue in ensuring secure, trustworthy AI deployment.

https://www.schneier.com/blog/archives/2025/10/agentic-ais-ooda-loop-problem.html

AI models can develop backdoor vulnerabilities from just 250 malicious documents, contrary to previous belief that larger models require proportional amounts. Research shows models of varying sizes, from hundreds of millions to billions of parameters, learned the same backdoor behavior from a small number of poisoned examples. This vulnerability can facilitate actions like generating gibberish on encountering trigger phrases. While the risk is evident, successful defenses exist with adequate clean training data, indicating the need for improved security practices against targeted data poisoning attacks.

https://arstechnica.com/ai/2025/10/ai-models-can-acquire-backdoors-from-surprisingly-few-malicious-documents/

AI chatbots enhance business interactions but pose risks as backdoors to sensitive data. A multi-layered defense is essential for AI security, as no single protective measure suffices. Trend Micro emphasizes the importance of comprehensive protection across the AI ecosystem to mitigate risks associated with new technologies. The article explores vulnerabilities in an AI attack chain.

https://www.trendmicro.com/en_us/research/25/j/ai-chatbot-backdoor.html

Notion's AI 3.0 is vulnerable to data theft via prompt injection, exploiting its access to private data and ability to communicate externally. Attackers can hide malicious prompts in documents, instructing the AI to extract and send sensitive information. The fundamental issue is that the LLM can't distinguish between legitimate commands and harmful inputs, posing significant security risks. Deploying AI agents without considering these vulnerabilities is reckless.

https://www.schneier.com/blog/archives/2025/09/abusing-notions-ai-agent-for-data-theft.html