Trending AI Security & AI Safety Posts

    November 24, 2022

    “Magical” Emergent Behaviours in AI: A Security Perspective

    Emergent behaviours in AI have left both researchers and practitioners scratching their heads. These are the unexpected quirks and functionalities that pop up in complex AI systems, not because they were explicitly trained to exhibit them, but due to the intricate interplay of the system's complexity, the sheer volume of…
    June 26, 2025

    Why AI Cannot Break Modern Encryption

    AI cannot break modern encryption. The reasons are fundamental: Mathematical Hardness, Cryptographic Design, Empirical Track Record, Quantum Contrast, Expert Consensus.
    September 20, 2023

    Why We Seriously Need a Chief AI Security Officer (CAISO)

    With AI’s breakneck expansion, the distinctions between ‘cybersecurity’ and ‘AI security’ are becoming increasingly pronounced. While both disciplines aim to safeguard digital assets, their focus and the challenges they address diverge in significant ways. Traditional cybersecurity is primarily about defending digital infrastructures from external threats, breaches, and unauthorized access. On…
    April 7, 2024

    The Dual Risks of AI Autonomous Robots: Uncontrollable AI Meets Cyber-Kinetic Risks

    The automotive industry has revolutionized manufacturing twice. The first time was in 1913 when Henry Ford introduced a moving assembly line at his Highland Park plant in Michigan. The innovation changed the production process forever, dramatically increasing efficiency, reducing the time it took to build a car, and significantly lowering…

    All AI Security & AI Safety Posts

    • AI SecurityMeta Attacks
      Marin IvezicDecember 15, 2021

      Meta-Attacks: Utilizing Machine Learning to Compromise Machine Learning Systems

      Meta-attacks represent a sophisticated form of cybersecurity threat, utilizing machine learning algorithms to target and compromise other machine learning systems. Unlike traditional cyberattacks, which may employ brute-force methods or exploit software vulnerabilities, meta-attacks are more nuanced, leveraging the intrinsic weaknesses in machine learning architectures for a more potent impact. For instance, a meta-attack might use its own machine-learning model to generate exceptionally effective adversarial examples…

      Read More »
    • AI SecurityAI Saliency Attacks
      Marin IvezicNovember 13, 2021

      How Saliency Attacks Quietly Trick Your AI Models

      "Saliency" refers to the extent to which specific features or dimensions in the input data contribute to the final decision made by the model. Mathematically, this is often quantified by analyzing the gradients of the model's loss function with respect to the input features; these gradients represent how much a small change in each feature would affect the model's output. Some sophisticated techniques like Layer-wise…

      Read More »
    • AI SecurityBatch Exploration Attacks
      Marin IvezicMay 31, 2021

      Batch Exploration Attacks on Streamed Data Models

      Batch exploration attacks are a class of cyber attacks where adversaries systematically query or probe streamed machine learning models to expose vulnerabilities, glean sensitive information, or decipher the underlying structure and parameters of the models. The motivation behind such attacks often stems from a desire to exploit vulnerabilities in streamed data models for unauthorized access, information extraction, or model manipulation, given the wealth of real-time…

      Read More »
    • AI SecurityModel Inversion Attack
      Marin IvezicFebruary 11, 2021

      How Model Inversion Attacks Compromise AI Systems

      A model inversion attack aims to reverse-engineer a target machine learning model to infer sensitive information about its training data. Specifically, these attacks are designed to exploit the model's internal representations and decision boundaries to reverse-engineer and subsequently reveal sensitive attributes of the training data. Take, for example, a machine learning model that leverages a Recurrent Neural Network (RNN) architecture to conduct sentiment analysis on…

      Read More »
    • AI SecurityData Spoofing AI
      Marin IvezicFebruary 11, 2021

      When AI Trusts False Data: Exploring Data Spoofing’s Impact on Security

      Data spoofing is the intentional manipulation, fabrication, or misrepresentation of data with the aim of deceiving systems into making incorrect decisions or assessments. While it is often associated with IP address spoofing in network security, the concept extends into various domains and types of data, including, but not limited to, geolocation data, sensor readings, and even labels in machine learning datasets. In the realm of…

      Read More »
    • AI SecurityTargeted Disinformation
      Marin IvezicAugust 7, 2020

      Targeted Disinformation

      Targeted disinformation poses a significant threat to societal trust, democratic processes, and individual well-being. The use of AI in these disinformation campaigns enhances their precision, persuasiveness, and impact, making them more dangerous than ever before. By understanding the mechanisms of targeted disinformation and implementing comprehensive strategies to combat it, society can better protect itself against these sophisticated threats.

      Read More »
    • AI SecurityAPI Security ML AI
      Marin IvezicApril 12, 2020

      Twitter API for Secure Data Collection in Machine Learning Workflows

      While APIs serve as secure data conduits, they are not impervious to cyber threats. Vulnerabilities can range from unauthorized data access and leakage to more severe threats like remote code execution attacks. Therefore, it's crucial to integrate a robust security architecture that involves multiple layers of protection. Transport Layer Security (TLS) should be implemented to ensure data confidentiality and integrity during transmission. On the authentication…

      Read More »
    • AI SecurityAI Model Stealing
      Marin IvezicNovember 13, 2019

      The Dark Art of Model Stealing: What You Need to Know

      Model stealing, also known as model extraction, is the practice of reverse engineering a machine learning model owned by a third party without explicit authorization. Attackers don't need direct access to the model's parameters or training data to accomplish this. Instead, they often interact with the model via its API or any public interface, making queries (i.e., sending input data) and receiving predictions (i.e., output…

      Read More »