Blog Posts | Joshua Berkowitz

16 Articles

2025 × AI security ×

Securing AI Workflows: How Cloudflare’s MCP Server Portals Enable Zero Trust Integration

The integration of large language models (LLMs) with core business applications is rapidly evolving, unlocking new opportunities and risks. As these AI systems shift from answering questions to active...

Access control AI security Cloudflare One Data protection LLM integration MCP Prompt injection Zero Trust

Dec 7, 2025

0 1375

News

Whisper Leak: How Encrypted AI Chats Can Still Reveal Your Secrets

Many people trust that encrypted messaging with AI chatbots is secure, but recent research from Microsoft challenges this assumption. A newly discovered threat, dubbed Whisper Leak , reveals that even...

AI security cybersecurity data privacy encrypted traffic large language models machine learning side-channel attack Whisper Leak

Nov 10, 2025

0 3135

News

Proximity: Open-Source Security Scanner for MCP Server Vulnerabilities

The rapid rise of AI platforms has created new opportunities and significant new risks. With Model Context Protocol (MCP) servers at the heart of customizable AI integrations, ensuring these systems a...

AI security MCP server open source penetration testing prompt injection proximity scanner security tools

Nov 5, 2025

0 1892

News

Inside the GitHub Copilot Chat Vulnerability: What Developers Must Know

AI-powered tools like GitHub Copilot Chat are transforming how developers write and review code, but as these assistants become more integral to workflows, they introduce new security challenges. A re...

AI security code exfiltration Content Security Policy GitHub Copilot prompt injection responsible disclosure software vulnerabilities

Oct 11, 2025

0 8745

News

Critical Flaws in Google Gemini AI Expose New Security Risks

Security researchers uncovered a major flaw in Google’s Gemini AI suite, demonstrating how even industry-leading AI can become a risk vector for privacy breaches and data theft. Cybersecurity experts ...

AI security cloud security cybersecurity data privacy Google Gemini prompt injection vulnerabilities

Oct 1, 2025

0 8448

News

AI-Invoking Malware: The Evolution of Cyber Threats

Security company Wiz is noting that cyber attackers are rapidly evolving and are now embedding artificial intelligence directly into malware payloads. This marks a significant departure from using AI ...

AI security cybersecurity LLM malware ransomware supply chain threat detection

Sep 27, 2025

0 2717

News

Invisible Dangers: How CVE-2025-49596 Exposed a Critical Flaw in MCP Inspector

Few developers realize the hidden risks lurking behind routine web browsing. Yet, CVE-2025-49596 reveals just how easily a trusted tool can turn into an attack vector. This vulnerability in the MCP In...

AI security containerization CVE-2025-49596 docker localhost vulnerability MCP Inspector network isolation

Sep 25, 2025

0 4664

News

AI-Powered Penetration Testing: How Villager Is Changing the Cybersecurity Game

Cyber threats are evolving at lightning speed, driven by new tools that combine automation and intelligence. One such tool making headlines is Villager, an AI-powered penetration testing framework des...

AI security automation Cyberspike cyber threats DeepSeek enterprise security penetration testing Villager

Sep 23, 2025

0 4796

News

When AI Agents Misremember: How Fake Memories Put Smart Assistants at Risk

What if you entrust your AI assistant with your credit card to book a flight, only to wake up and discover it has spent your money on bizarre purchases? What would you do? Panic? This unsettling possi...

AI assistants AI security autonomous agents large language models memory manipulation prompt injection Web3

Sep 11, 2025

0 6270

News

Microsoft Copilot Agent Policy Flaw: What Organizations Need to Know

Many organizations trust Microsoft Copilot to handle sensitive workflows, believing policy controls protect their AI agents. Recent findings, however, revealed that a critical policy enforcement flaw ...

AI security Copilot enterprise security Graph API Microsoft vulnerability zero trust

Sep 4, 2025

0 4081

News

GitHub Copilot Vulnerability: How Prompt Injection Opened the Door to RCE Attacks

A critical vulnerability in GitHub Copilot , identified as CVE-2025-53773 exposed developers to remote code execution (RCE) and full system compromise, all triggered by malicious prompt injection with...

AI security cybersecurity developer tools GitHub Copilot Microsoft prompt injection remote code execution vulnerability

Aug 31, 2025

0 19008

News

MCP-Remote Flaw: Why AI Integrators Must Act Fast on CVE-2025-6514

What if there was a tool designed to make AI applications smarter and more connected but with a hidden flaw that could hand attackers the keys to your system? That’s exactly the risk uncovered in the ...

AI security Anthropic cybersecurity MCP open source patch management remote code execution vulnerability

Jul 14, 2025

0 12188

News

1
2

Our latest content

Check out what's new !

See all

Ads

Prompt Maker Image Generator

Struggling with the perfect AI image prompt? My free app helps you generate brilliant ideas and instantly creates an image to match. Go from concept to creation in two clicks!

Most Popular Articles

Check out what the hot topics are!

See all

Every shirt tells a story—and every story

#ClothingForACause