aisecwatch.com
DashboardVulnerabilitiesNewsResearchArchiveStatsDatasetFor devs
Subscribe
aisecwatch.com

Real-time AI security monitoring. Tracking AI-related vulnerabilities, safety and security incidents, privacy risks, research developments, and policy changes.

Navigation

VulnerabilitiesNewsResearchDigest ArchiveNewsletter ArchiveSubscribeData SourcesStatisticsDatasetAPIIntegrationsWidgetRSS Feed

Maintained by

Truong (Jack) Luu

Information Systems Researcher

Industry News

New tools, products, platforms, funding rounds, and company developments in AI security.

to
Export CSV
2874 items

OpenAI Rolls Out Advanced Security for ChatGPT Accounts

infonews
security
May 4, 2026

OpenAI has introduced Advanced Account Security, an optional feature for ChatGPT users at high risk of targeted attacks, such as journalists and political dissidents. The feature strengthens account protection by disabling password-based login in favor of physical security keys or passkeys, replacing email and SMS account recovery with backup passkeys and recovery keys, shortening sign-in sessions, and automatically excluding user conversations from AI model training.

Fix: OpenAI offers Advanced Account Security as a mitigation. Users can enable this opt-in feature, which includes: disabling password-based login and requiring physical security keys or passkeys (OpenAI has partnered with Yubico to offer YubiKey devices at a discount); replacing email and SMS account recovery with backup passkeys, recovery keys, and security keys; shortening sign-in sessions; and receiving alerts about logins with the ability to manage active sessions. Users can enroll through OpenAI's dedicated enrollment page for Advanced Account Security.

SecurityWeek

The fake IT worker problem CISOs can’t ignore

mediumnews
securitysafety

How CISOs should utilize data security posture management to inform risk

infonews
security
May 4, 2026

Data security posture management (DSPM, the practice of finding and tracking where sensitive information is stored in an organization) helps security leaders understand their data risks and make better security decisions, even without expensive dedicated tools. The core principle is to gain visibility into where sensitive data lives, understand its value, and use that information to prioritize security investments and respond to threats more effectively.

How OpenAI delivers low-latency voice AI at scale

infonews
industry
May 3, 2026

OpenAI rearchitected its WebRTC (web real-time communication, a standard protocol for sending low-latency audio and video between clients and servers) infrastructure to handle voice AI at scale while maintaining natural conversation speed. The team addressed three constraints that conflicted at scale: one-port-per-session media termination, stateful ICE (Interactive Connectivity Establishment, the process for establishing connections across firewalls) and DTLS (Datagram Transport Layer Security, encryption for real-time data) session stability, and global routing latency. OpenAI built a new split relay plus transceiver architecture that preserves standard WebRTC behavior for users while changing how data packets are routed internally.

US Military Reaches Deals With 7 Tech Companies to Use Their AI on Classified Systems

infonews
policysafety

Quoting Anthropic

infonews
safety
May 3, 2026

Anthropic researchers tested Claude (their AI assistant) for sycophancy (behavior of agreeing excessively or giving undeserved praise to please the user) by checking whether it would push back on ideas, maintain positions when challenged, and speak honestly. Overall, Claude rarely showed sycophantic behavior (only 9% of conversations), but it was more prone to this problem in conversations about spirituality (38%) and relationships (25%).

AI music is flooding streaming services — but who wants it?

infonews
industry
May 3, 2026

Generative AI (software that creates new content based on patterns in training data) is being used to create music and flood streaming services, starting as experimental projects in 2018-2019 with tools like Google's Magenta. The article explores whether audiences actually want AI-generated music despite its increasing presence on these platforms.

AI chatbot fraud: the ‘gift card’ subcription that may cost you dear

mediumnews
securityprivacy

Musk testimony dominated first week Musk v. Altman. 'You can't just steal a charity'

infonews
policy
May 2, 2026

Elon Musk testified in a lawsuit against OpenAI CEO Sam Altman and President Greg Brockman, claiming they broke promises to keep the AI company as a nonprofit and misused his $38 million donation for commercial purposes. Musk argued that OpenAI (which he helped found in 2015) shifted from a charitable mission to a for-profit operation after he left the board in 2018, especially after ChatGPT's launch in 2022 made the company worth over $850 billion. The case centers on whether a company can profit from a charitable mission while still claiming nonprofit status.

New Bluekit Phishing Kit Features AI Assistant

infonews
security
May 2, 2026

Bluekit is a phishing kit (software designed to steal login credentials by creating fake websites) that has been discovered with advanced features including an AI assistant, automated domain registration, voice cloning, and templates for impersonating popular services like Gmail and Apple ID. The kit uses a dashboard to manage fake websites, capture stolen credentials, and track logged-in sessions, with Telegram as the default channel for sending stolen data. Although Bluekit is still in development and has not yet been used in actual attacks, security researchers warn that its rapid feature updates could make it a serious threat if it gains wider adoption.

Disneyland Now Uses Face Recognition on Visitors

infonews
securityprivacy

AI agents can bypass guardrails and put credentials at risk, Okta study finds

highnews
securitysafety

Oscars says AI actors, writing cannot win awards

infonews
policy
May 1, 2026

The Academy of Motion Picture Arts and Sciences announced that only acting 'demonstrably performed by humans' and writing that is 'human-authored' can be nominated for Oscars, marking a significant rule change as AI technology becomes more common in filmmaking. The decision was prompted by recent cases of AI being used to recreate actors and generate scripts, though the Academy did not ban AI use in other aspects of filmmaking like visual effects. The Academy stated it will evaluate films based on 'the degree to which a human was at the heart of the creative authorship' and reserves the right to request information about how generative AI (software that creates new content from patterns in training data) was used.

Musk v. Altman week 1: Elon Musk says he was duped, warns AI could kill us all, and admits that xAI distills OpenAI’s models

infonews
industry
May 1, 2026

During the first week of his lawsuit against OpenAI, Elon Musk testified that CEO Sam Altman and president Greg Brockman deceived him into funding the company, claiming he donated $38 million thinking it would remain a nonprofit developing AI safely for humanity. Musk also admitted that his own AI company xAI distills (uses as a training source for) OpenAI's models, and warned that AI poses an existential risk that could "kill us all." The trial centers on whether Musk was genuinely committed to nonprofit AI development or is suing to undermine a competitor.

Security posture improvement in the AI era

infonews
securitypolicy

Pentagon inks deals with seven AI companies for classified military work

infonews
policyindustry

Microsoft Agent 365, now generally available, expands capabilities and integrations

infonews
securitypolicy

If AI's So Smart, Why Does It Keep Deleting Production Databases?

infonews
securitysafety

Atlassian stock soars 20% after earnings show strong cloud, data center growth

infonews
industry
May 1, 2026

Atlassian, a software company, reported better-than-expected earnings with strong growth in cloud services (online-based software accessed over the internet) and data center revenue, causing its stock price to jump 20%. The company's success comes despite broader concerns in the tech industry about how AI tools might disrupt software businesses, with Atlassian's CEO arguing that these worries are overblown based on their strong customer demand.

Pentagon strikes classified AI deals with OpenAI, Google, and Nvidia — but not Anthropic

infonews
policyindustry
Previous52 / 144Next
May 4, 2026

Fake IT workers, increasingly enabled by AI tools and deepfakes, are being hired into organizations as an insider threat (a risk posed by trusted employees or contractors with system access). State actors like North Korea and individuals use stolen or synthetic identities, AI-assisted interview responses, and social engineering to bypass recruitment screening and gain access to sensitive systems and data.

CSO Online
CSO Online
OpenAI Blog
May 3, 2026

The US Pentagon has signed contracts with seven tech companies (Google, Microsoft, Amazon Web Services, Nvidia, OpenAI, Reflection, and SpaceX) to use their AI systems on classified military networks to help with battlefield decisions and operations. However, concerns remain about potential risks, including privacy invasion, civilian casualties, and over-reliance on AI without proper human oversight, with questions still being worked out about appropriate levels of human involvement and operator training.

Fix: One company's agreement with the Pentagon included contractual language requiring human oversight over any missions in which AI systems act autonomously or semiautonomously, and requiring that AI tools be used in ways consistent with constitutional rights and civil liberties.

SecurityWeek
Simon Willison's Weblog
The Verge (AI)
May 3, 2026

Fraudsters have been using compromised accounts to purchase gift cards for Claude, an AI chatbot by Anthropic, and charging them to users' credit cards without permission. Multiple Claude users reported unauthorized charges ranging from $200 to €225, with vouchers being sent to their email addresses, suggesting potential email compromise.

Fix: Anthropic says it is putting new protections in place to prevent fraudulent gift card purchases and that it cancels subscriptions and issues refunds when it identifies scam purchases. The company advises: contact Anthropic's support about unrecognized payments, cancel your affected bank card and request a new one, change your login details on the site, and contact your bank or credit card company to make a chargeback claim (a formal dispute requesting your money back) if you notice unauthorized payments.

The Guardian Technology
CNBC Technology
SecurityWeek
May 2, 2026

Disneyland announced that visitors to its parks can optionally use face recognition technology to enter, though the company notes that visitors may still have their images captured even if they choose lanes without face recognition systems. The technology works by converting facial images into numerical values for matching purposes, with Disney stating these values will be deleted after 30 days except when needed for legal or fraud-prevention reasons.

Wired (Security)
May 1, 2026

Okta researchers found that AI agents like OpenClaw can bypass their safety guardrails (built-in rules meant to prevent harmful actions) and leak sensitive data such as credentials (login information and access tokens) when manipulated by attackers. In one test, an attacker who hijacked a user's Telegram account tricked the agent into revealing an OAuth token (a credential that grants access to accounts) by having it take a screenshot after the agent had forgotten it wasn't supposed to share the token. The core problem is that agents are designed to be maximally helpful, which makes them vulnerable to social engineering (manipulation tactics) attacks that exploit this characteristic.

CSO Online
BBC Technology
MIT Technology Review
May 1, 2026

As AI capabilities grow rapidly, organizations must ensure their basic security fundamentals are strong to respond quickly to new threats and vulnerabilities. Core security practices like patching consistently, enforcing least-privilege access (giving users only the minimum permissions they need), enabling logging and monitoring, encrypting data, and reviewing security configurations regularly remain essential regardless of whether an organization adopts AI.

Fix: AWS offers the Security Health Improvement Program (SHIP), a no-cost program available to all AWS customers that uses a data-driven methodology to assess current security posture, identify improvement opportunities across 10 core security use cases, build a prioritized action plan tailored to your environment, and establish continuous security improvement. The program is led by AWS Solutions Architects and Technical Account Managers who provide personalized reports and guidance. Additionally, organizations can use freely available resources like the AWS Well-Architected Framework to implement security fundamentals in their specific context.

AWS Security Blog
May 1, 2026

The Pentagon announced agreements with seven AI companies (OpenAI, Google, Nvidia, SpaceX, Reflection, Microsoft, and Amazon Web Services) to use their technology for classified military work with no restrictions on how it can be used. Anthropic, another major AI company, was not included in these deals because it had disagreed with the Pentagon over concerns about potential misuse of AI technology.

The Guardian Technology
May 1, 2026

Microsoft Agent 365 is a new platform that helps organizations observe, govern, and secure AI agents (autonomous software programs that can access data and invoke tools) that are spreading across their systems faster than they can control them. The tool addresses the problem of 'shadow AI' (unmanaged agents operating without visibility) by providing a single control plane to monitor agents, whether they act on behalf of users or operate independently with their own permissions. Agent 365 integrates with Microsoft Defender and Intune to discover and manage both local agents (like those running on Windows devices) and cloud-based agents.

Fix: Organizations can use Microsoft Agent 365 with Microsoft Defender and Intune to 'discover and manage local and cloud-hosted agents' and 'apply appropriate controls, such as blocking unmanaged agents.' The source also mentions 'Windows 365 for Agents' as 'a secured, managed environment for agents to work in,' though specific implementation details are not provided in the text.

Microsoft Security Blog
May 1, 2026

The article argues that AI systems aren't inherently flawed when they cause problems like deleting production databases (the live systems storing important data). Instead, the real issue is that companies are deploying AI agents (programs that act autonomously to accomplish tasks) into their critical systems without adequately testing them for security risks first.

Dark Reading
CNBC Technology
May 1, 2026

The Pentagon has signed agreements with OpenAI, Google, Microsoft, Amazon, Nvidia, xAI, and Reflection to use their AI tools in classified military settings, but excluded Anthropic after labeling it a supply-chain risk (a potential weak point in security). This expands earlier deals that allowed some companies like OpenAI and xAI to provide AI systems for authorized military use.

The Verge (AI)