Headline AI threats are mostly just headlines right now. For the majority of us, it’s an evolution of what security should already be doing rather than a complete revolution. Beyond that, many of the ‘new’ AI threats are only relevant to those building their own LLMs.

In this article I am going to detail the types of GenAI user personas, and more importantly the security risks associated with them. I will also be providing some thoughts on what you could include in your organization's AI Use Policies.

An analysis of the four main approaches to AI usage policies with some practical advice from Vanilla Ice about focusing on the end user.

Google unveiled Gemini, rebranding from "Bard" with a new paid Gemini Advanced tier based on Ultra 1.0, challenging OpenAI's ChatGPT with novel features but raising data privacy concerns.

NIST's Cybersecurity Framework 2.0 is coming and will likely provide a helpful structure for thinking about how to secure GenAI. This blog explores the framework in more detail, while providing practical guidance at each of CSF's stages.

Yesterday, Italy’s data protection authority, Garante, issued a notice to OpenAI for potential violations of GDPR. In this blog, we explore the impact of generative AI tools on new and existing and emerging compliance frameworks.