OWASP - Fred Rohrer's Blog

Fred Rohrer's Blog

Sign in Subscribe

OWASP

A collection of 2 posts

Operationalizing AI Defense in the Age of Agents

Remember the panic back in 2023? We were all terrified of "Shadow AI", employees pasting proprietary code into ChatGPT or leaking sensitive memos into the public cloud. We spent the next year building private instances and locking down endpoints. But looking around today, the game has completely changed.

Understanding the OWASP Top 10 for LLMs: Risks and Controls

Understanding the OWASP Top 10 for LLMs: Risks and Controls 1. Prompt Injection Prompt injection occurs when malicious inputs manipulate a Large Language Model (LLM) into executing unintended actions or revealing sensitive data. Attackers craft inputs that override the model’s instructions, potentially leading to data leaks or unauthorized actions.