AI CyberSecurity Podcast

🔒 We have all heard about GenAI Hallucinations but how do we tackle these?🚀 Caleb & Ashish spoke to Edward Wu, Founder and CEO at Dropzone AI about ways to manage GenAI Hallucinations. 🎯 Techniques to Reduce Hallucination in AI Systems: Minimize Opportunities: Limit the scenarios where AI might "guess" by ensuring it has direct access to relevant data. Use RAG (Retrieval Augmented Generation): Implement tools that act as a 'cheat sheet' to supply necessary information, enhancing AI accuracy. If GenAI is on your radar and you are worried about hallucinations, this is a great chat to listen to, we have linked the full episode in the comments below #aisecurity #llmsecurity #aicybersecurity

Our 1st in person episode recording with Clint Gibler, Caleb Sima & Ashish Rajan 🤴🏾🧔🏾♂️ at BSidesSF. It was a great conversation with some fun bits as usual. Episode coming out soon 🎙️ #aicybersecurity #aisecurity #ciso

🔍 We are all navigating the hype around AI in cloud security? How do you separate real innovation from marketing fluff? 🚀 Ashish & Caleb spoke to Edward Wu, Founder and CEO of Dropzone AI (One of the finalists at RSA's Innovation Sandbox this week) . 🔹 AI as a Tool, Not a Panacea: Understand AI's role as a powerful, yet selective, tool within your cybersecurity arsenal. 🔹 Critical Questions for Vendors: 🦞 What percentage of your product actually uses AI? (Think lobster ravioli—how much is really lobster?) 🕵️♂️ Which specific features of your product leverage AI? 💥 Request concrete examples of AI making a tangible difference. 🔍 Importance of scrutinizing where and how AI is integrated, comparing it to "nuclear bombs in the toolbox"—impressive but not universally applicable. If AI Security in the Vendor landscape is of interest to you, we had a great discussion in this episode that we have linked for you in the comments below #aisecurity #CISO #cybersecurityleadership

🔒 How is AI going to shape the world of Offensive Security?🌐 Caleb and Ashish spoke to Rob Ragan about the evolution of AI technologies in offensive security in 2024 🤖 AI’s role in automating narrow tasks within offensive security has surpassed expectations. 🔑 Successful automation of authentication and authorization testing in web APIs—a previously unattainable goal. 🛠️ Real-world applications: AI strategies that escalate privileges from basic user to admin, showing promise in handling complex web APIs. 🎧 Tune into the full episode to learn more about AI in Offensive Security! #aisecurity #offensivesecurity #cybersecurityleaders

🤖 How do we secure internal LLM Models? Caleb and Ashish spoke to Daniel Miessler about the rise of internal large language models and the security strategies enterprises can adopt to safeguard their innovations. 🛡️ Mitigating prompt injection risks: Learn techniques to protect your models from malicious inputs. 🚦 Establishing robust trust and safety protocols: Discover how to ensure your LLMs align with your business objectives. 🤖 Implementing smart moderation: strategies like contextual usage boundaries to prevent misuse. Part 1 and Part 2 of the series with Daniel, Caleb and Ashish made for a very interesting listen, we can try to break down the world of AI and how to best secure it!We have linked both parts in the comments below! #aisecurity #llmsecurity #cybersecurityleadership

How can AI change a Security Analyst's workflow? Ashish and Caleb caught up with Ely Kahn, VP of Product at SentinelOne, to discuss the revolutionary impact of generative AI on cybersecurity. Ely spoke about the challenges and solutions in integrating AI into cybersecurity operations, highlighting how can simplify complex processes and empowering junior to mid-tier analysts. #aicybersecurity #aisecurity #llmsecurity

How is AI transforming traditional approaches to offensive security, pentesting, security posture management, security assessment, and even code security? Caleb and Ashish spoke to Rob Ragan, Principal Technology Strategist at Bishop Fox about how AI is being implemented in the world of offensive security and what the right way is to threat model an LLM. #offensivesecurity #aisecurity #llmsecurity

✨ Whats the link between being a good Prompt Engineer and having great Management Skills? On our latest episode Caleb and Ashish spoke to Edward Wu, Founder and CEO of Dropzone AI, who shared that becoming a prompt engineer has made him a better manager! 🔥 How, you ask? ⚒ Prompting Large Language Models requires ultimate precision ⚒This trains you to communicate crystal clear instructions ⚒ No room for ambiguity or mixed signals ⚒Just straightforward "do X like Y" directions This is why Caleb still maintains his stance that elementary school teachers would make great prompt engineers with their knack for simple, clear communication. This was a great chat between the 3 of them, if you are interested the reality of AI automation in Enterprise and much more, this is a good episode for you. Full episode linked in the comments below #llmsecurity #aisecurity #genai

Where do you start when thinking about AI Security in Enterprise? This was a great conversation between Daniel Miessler, Caleb Sima and Ashish Rajan 🤴🏾🧔🏾♂️ about AI in Enterprise. 🔍 AI in Enterprise: A Two-Pronged Approach 🚀 As we navigate through the integration of AI in enterprise settings, two crucial categories emerge: Defensive Strategies: What does the roadmap look like for enterprises deploying AI capabilities? 🛡️ Evolution of Solutions: How is AI transforming the capabilities of products and solutions we're investing in? 🌐 💡 Some key things to take note of 📝 - The importance of disaster recovery and penetration testing for AI deployments cannot be overstressed. - Secure coding practices and secure deployment are pivotal when it comes to leveraging Large Language Models (LLMs) in a secure manner. - Understanding the permissions, rules, and event definitions essential for AI integration in cybersecurity practices. But, there's more to it. We spoke about the concept of a 'hack week' 🛠️ – a time dedicated by security teams to explore potential vulnerabilities and the unique challenges posed by AI technologies. This proactive approach can not only fortify defenses but also sparks innovation within the team. There were so many gems in this episode, so make sure you catch the full thing on the link below #aisecurity #llmsecurity #genai

What is the current reality for AI automation in Cybersecurity? Caleb and Ashish spoke to Edward Wu, founder and CEO of Dropzone AI about the current capabilities and limitations of AI technologies, particularly large language models (LLMs), in the cybersecurity domain. From the challenges of achieving true automation to the nuanced process of training AI systems for cyber defense, Edward, Caleb and Ashish shared their insights into the complexities of implementing AI and the importance of precision in AI prompt engineering, the critical role of reference data in AI performance, and how cybersecurity professionals can leverage AI to amplify their defense capabilities without expanding their teams. #aisecurity #aicybersecurity #aiautomation