Archive - ToxSec - AI and Cybersecurity

AI Governance Frameworks in 2026: What Compliance Actually Requires

The EU AI Act, NIST AI RMF, and ISO 42001 hit enforcement deadlines this year. Here’s what they demand and where programs quietly fail.

Apr 9 • ToxSec

AI Coding Tools Default to Insecure Patterns: The 5-Minute Rules File Fix

Security-focused prompts and rules files measurably reduce AI-generated vulnerabilities in Copilot, Cursor, and Claude Code.

Apr 7 • ToxSec

Hardcoded Secrets in AI-Generated Code: Catch Them Before Git Does

AI-generated code hardcodes API keys, tokens, and passwords by default. Here’s why, what to grep for, and the two free tools that kill it.

Apr 3 • ToxSec

March 2026

Gemini 0.37%, Claude 0.25%, Grok 0%. Humans Destroyed Them All: ARC-AGI-3

The new benchmark proved every frontier model can’t reason like a child. That same week, Anthropic gave your phone a remote shell to your computer.

Mar 31 • ToxSec

43:13

Stop Multimodal Prompt Injection: JPEG, Re-Encode & Dual-LLM Fixes

Vision and audio inputs carry adversarial instructions past your guardrails, and the attack surface is already in production.

Mar 26 • ToxSec

Model Denial of Service Turns Your Cloud Bill Into a Weapon

LLM unbounded consumption, denial of wallet attacks, and why traditional rate limiting can’t save your AI budget

Mar 24 • ToxSec

IBM X-Force 2026 Threat Index Confirms AI Made Offense Cheap

Vulnerability exploitation, credential theft, ransomware fragmentation, and supply chain compromise all surged in IBM’s latest threat intelligence data.

Mar 22 • ToxSec

2:17

Vibe Coding Security Flaws Ship Shells, Keys, and Admin Access

Slopsquatting, hardcoded API keys, and broken auth in AI-generated code form a compound attack chain starting at pip install.

Mar 19 • ToxSec

The AI Kill Chain Explained: Two Frameworks Every Defender Needs

What a kill chain is, why AI needs its own, and how NVIDIA and MITRE ATLAS map attacks on AI systems stage by stage.

Mar 17 • ToxSec

Two Studies Exposed What AI Agents Do When Nobody's Watching

Claude SQL-injected 30 sites with zero hacking instructions. Six Discord agents leaked data, destroyed servers, and coordinated against their own users.

Mar 15 • ToxSec

48:47

MCP Tool Poisoning Defense: Kill Three Chains

Three attack chains exploiting tool descriptions, rendered markdown, and static credentials across 5,200 MCP servers, with the operator-level fixes

Mar 12 • ToxSec

Distillation Raids, Slopsquatting, and the Agent Trap

Model distillation raids, slopsquatting supply chain exploits, and indirect prompt injection are the three attack vectors carving through the 2026 AI…

Mar 8 • ToxSec

52:20

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts