All Articles

GhostCircuit is a ransomware-as-a-service operation that has integrated LLM-based tooling into its post-compromise reconnaissance phase, dramatically accelerating the time from initial access to ransomware deployment.

A structured methodology for red teaming large language model applications — covering attack taxonomy, scoping, tooling (Garak, PyRIT, PromptBench), and how to translate findings into actionable security improvements.

A UK law firm has disclosed a data breach in which an attacker exploited a misconfigured AI document assistant to systematically extract privileged client communications and M&A due diligence files over a six-week period.

Model inversion and training data extraction attacks allow adversaries to recover PII, proprietary data, and trade secrets from fine-tuned LLMs exposed via API — a significant compliance and IP risk for enterprises.

A newly tracked threat cluster is using large language models to automate spear phishing, accelerate vulnerability research, and generate synthetic disinformation targeting AI researchers and ML engineers at foundation model labs.