Communications of the ACM

Safe Coding

Safe coding is a collection of software design practices and patterns that allow for cost-effectively achieving a high degree ...

Fortinet closes brute-force and command injection flaws in FortiWeb & Co.

Fortinet closes flaws in FortiWeb and FortiManager, allowing command injection, among other things. FortiGate firewalls were ...

Understanding the Foundation: How LLMs Process Your Input

First of four parts Before we can understand how attackers exploit large language models, we need to understand how these models work. This first article in our four-part series on prompt injections ...
Security Boulevard

Common ecommerce security vulnerabilities and testing strategies

Ecommerce platforms represent one of the most consistently targeted areas of the modern digital estate. They process payment ...
InfoWorld

19 large language models redefining AI safety—and danger

Whether you are looking for an LLM with more safety guardrails or one completely without them, someone has probably built it.

Microsoft Patchday: Two zero-days and 83 new vulnerabilities patched

On the March Patchday, Microsoft fixed 83 new vulnerabilities. Two are zero-day flaws. None have likely been attacked yet.
CSO Online

Did cybersecurity recently have its Gatling gun moment?

In 2025, hackers stopped using muskets and started using AI machine guns. If your defense strategy still relies on manual human response, you're already a casualty.
InfoWorld

19 large language models for safety or danger

These new models are specially trained to recognize when an LLM is potentially going off the rails. If they don’t like how an interaction is going, they have the power to stop it. Of course, every ...