{"data":{"id":"48e879f6-2130-41ff-8b4b-40d587a6a840","title":"AI incidents need a new playbook. Here’s how to build one","summary":"Most organizations have AI systems in production but lack incident response (IR) playbooks specifically designed for AI failures, relying instead on traditional security frameworks that don't address AI-specific problems. AI incidents fall into two categories with very different causes and defenses: model-originated failures (like hallucinations or bias that happen during normal operation) and externally induced failures (like adversarial attacks or data poisoning), plus hybrid cases where AI errors create legal liability. Traditional security frameworks like the CIA triad (confidentiality, integrity, availability) don't detect many AI incidents because they assume deterministic, static failures, but AI systems produce probabilistic outputs that can't be patched like code vulnerabilities.","solution":"N/A -- no mitigation discussed in source.","labels":["security","policy"],"sourceUrl":"https://www.csoonline.com/article/4196303/ai-incidents-need-a-new-playbook-heres-how-to-build-one.html","publishedAt":"2026-07-14T09:00:00.000Z","cveId":null,"cweIds":null,"cvssScore":null,"cvssSeverity":null,"severity":"info","attackType":[],"issueType":"news","affectedPackages":null,"affectedVendors":[],"affectedVendorsRaw":["Epic","Tesla","Air Canada","Workday","Microsoft"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":null,"epssScore":null,"patchAvailable":null,"disclosureDate":"2026-07-14T09:00:00.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["safety","integrity"],"aiComponentTargeted":"model","llmSpecific":false,"classifierConfidence":0.85,"researchCategory":null,"atlasIds":null}}