LLM

Russia's APT28 has deployed LAMEHUG and PROMPTSTEAL malware that queries large language models via Hugging Face to dynamically generate attack commands, marking the first confirmed use of AI-powered malware in active cyber operations.

A practical guide to securing AI and large language model applications, covering the OWASP Top 10 for LLMs (2025), prompt injection defenses, RAG security, AI agent risks, and compliance with NIST AI RMF and the EU AI Act.

A practical guide to securing large language model and AI deployments, covering prompt injection, data extraction, RAG pipeline security, AI gateways, input/output filtering, and the OWASP Top 10 for LLM Applications.