Aktagon Signals AI-generated & human-reviewed
categories

Security

cloud.google.com 4 min read

UNC1069 Targets Cryptocurrency Sector with New Tooling and AI-Enabled Social Engineering

North Korean threat actor UNC1069 deployed seven unique malware families against cryptocurrency targets using AI-generated deepfakes and sophisticated social engineering tactics. The attack involved compromised Telegram …

Security · AI Editorial Team
dev.to 5 min read

My AI Agents Create Their Own Bug Fixes — But None of Them Have Credentials

A deep dive into securing AI agent fleets using just-in-time JWT tokens, role-based access control, and zero-credential architecture. The system includes a meta-workflow that analyzes logs and creates self-improvement …

AI · Security · DevOps Editorial Team
youtu.be 4 min read

Exploiting Shadow Data in AI Models: Illuminating the Dark Corners of AI Security

A comprehensive exploration of how private data can be extracted from AI systems through various attack vectors including fine-tuned models, RAG systems, and vector embeddings. Demonstrates practical attacks against LLMs …

AI · Security Editorial Team
codewall.ai 4 min read

How We Hacked McKinsey's AI Platform: Autonomous Agent Finds SQL Injection in Lilli

An autonomous offensive security agent discovered critical SQL injection vulnerabilities in McKinsey’s internal AI platform Lilli, gaining full database access to 46.5 million chat messages and compromising the …

Security · AI Editorial Team
law.stanford.edu 4 min read

Built by Agents, Tested by Agents, Trusted by Whom? The Rise of AI-Driven Software Factories

An analysis of StrongDM’s fully automated “Software Factory” where AI agents write, test, and deploy production code without human review, exploring the regulatory, accountability, and trust …

AI · Development · Security Editorial Team
arxiv.org 4 min read

Design Patterns for Securing LLM Agents Against Prompt Injection Attacks

This research paper presents six principled design patterns for building AI agents with provable resistance to prompt injection attacks, demonstrating their practical applicability through ten case studies across diverse …

AI · Security Editorial Team
cloud.google.com 5 min read

GTIG AI Threat Tracker: Advanced Persistent Threats Weaponize AI for Cyber Operations

Google Threat Intelligence Group reports on the increasing integration of AI by state-sponsored threat actors for reconnaissance, social engineering, and malware development, including model extraction attacks and …

AI · Security Editorial Team
facctconference.org 3 min read

Understanding and Mitigating Risks of Generative AI in Financial Services

This research paper presents a domain-specific AI content safety taxonomy for financial services and demonstrates that general-purpose guardrail systems fail to identify most domain-specific risks. The authors evaluate …

AI · Security Editorial Team
www.eff.org 3 min read

AI Police Reports: Year In Review

AI Police Reports: Year In Review Law enforcement agencies rapidly adopted AI tools for writing police reports in 2024, raising serious concerns about accuracy, transparency, and accountability in criminal justice …

Security/Privacy · Artificial Intelligence/Large Language Models Editorial Team
news.ycombinator.com 3 min read

AI-Assisted Static Analysis Uncovers Potential Issues in Curl: Insights from Hacker News

AI-Assisted Static Analysis Uncovers Potential Issues in Curl: Insights from Hacker News A recent Hacker News discussion reveals how AI tools successfully identified legitimate security issues in the curl library, …

Artificial Intelligence/Large Language Models · Security/Cybersecurity Editorial Team