LIVE FEED
CrowdStrike Charlotte AI Vulnerable to Prompt Injection

CrowdStrike Charlotte AI Vulnerable to Prompt Injection

ATLAS OWASP MEDIUM Moderate risk · Monitor closely ▲ 6.5 CrowdStrike Blog

CrowdStrike's Charlotte AI AgentWorks introduces an agentic security ecosystem where autonomous AI agents collaborate to perform security operations tasks with reduced human intervention. The platform raises important considerations around excessive agency, trust boundaries between agents, and the attack surface introduced by interconnected AI systems in security-critical environments. As agentic SOC architectures proliferate, the security of the AI agents themselves becomes a primary concern.

Shadow AI Governance Threats Across SaaS and Cloud Endpoints

Shadow AI Governance Threats Across SaaS and Cloud Endpoints

ATLAS OWASP MEDIUM Moderate risk · Monitor closely ▲ 6.5 CrowdStrike Blog

CrowdStrike has announced new platform innovations targeting the governance of Shadow AI and the security of AI agents across endpoints, SaaS, and cloud environments. The release highlights growing enterprise concerns around unmanaged AI tool proliferation and the attack surface introduced by autonomous AI agents. These developments reflect an industry-wide shift toward operationalising AI-specific security controls within existing SOC workflows.

Claude Source Code Leak Reveals AI Supply Chain Risk

Claude Source Code Leak Reveals AI Supply Chain Risk

ATLAS OWASP HIGH Significant risk · Prioritise patching ▲ 8.2 Dark Reading

A reported source code leak affecting Claude, Anthropic's large language model, underscores systemic weaknesses in AI software supply chains and the absence of robust oversight mechanisms at critical development and distribution layers. The incident highlights how proprietary model code, training pipelines, and system prompts can become high-value targets for adversarial actors seeking to enable model theft, backdoor insertion, or competitive intelligence gathering. This event serves as a broader warning about treating AI development infrastructure with the same rigor applied to other critical systems.

◉ AI THREAT BRIEFING

Stay ahead of the threat.

Twice-weekly digest of critical AI security developments — every story mapped to MITRE ATLAS and OWASP LLM Top 10. Free.

No spam. Unsubscribe anytime.