Cybersecurity
loading
·
loading
·
Agentic AIs new attack surfaces, Data poisoning, tool-poisoning, and malicious MCP servers
·962 words·5 mins
Data poisoning is the deliberate injection of adversarial content into a model’s training data or a tool’s metadata so the LLM learns or obeys malicious instructions. In agentic systems that load third-party tools from MCP (model-connected platform) servers, poisoned tool descriptions or docstrings can trick an LLM into leaking secrets, executing harmful actions, or behaving as a covert proxy for attackers.
The Dark Side of abstraction, Supply Chain Attacks on dependencies
·606 words·3 mins
There is growing threat of AI enhanced supply chain attacks targeting Python packages, FOSS software and why sometimes writing your own isolated, network-free software might be our best defense