Category Archives: Privacy

The AI Strategy Vacuum: Why “We Use ChatGPT” Isn’t a Plan

Posted on June 25, 2026 by Simon Roses

Read Time: 18 minutes TL;DR A CEO tells the board the company is “all in on AI.” Three floors down, here’s what that actually means: marketing is running a chatbot nobody in security has heard of, finance just pasted the … Continue reading →

Posted in AI, Economics, Privacy, Security, Technology | Tagged AI, Application Security, Information Security, ShadowAI | Leave a comment

AI Agent Skill Poisoning: The Supply Chain Attack You Haven’t Heard Of

Posted on February 26, 2026 by Simon Roses

Read Time: 15 minutes TL;DR Security professionals are well acquainted with npm supply chain attacks, PyPI package poisoning, and the infamous xz backdoor. But a new attack vector is emerging that flies under the radar—one that is arguably more dangerous … Continue reading →

Posted in AI, Pentest, Privacy, Security, Technology | Tagged agent-security, AI, ai-security, Application Security, openclaw, pentesting, Skill, supply-chain | Leave a comment

The Shadow Twin Threats: When AI and Vibe Coding Go Rogue in Your Network

Posted on February 19, 2026 by Simon Roses

Read Time: 15 minutes TL;DR Your IT department doesn’t know it yet, but someone in marketing just spun up an Ollama server to run a local LLM. Finance is building a custom payroll app with Cursor. And that NVIDIA DGX … Continue reading →

Posted in AI, Pentest, Privacy | Tagged AI, Application Security, Software Security, Vibe Coding | Leave a comment

Category Archives: Privacy

The AI Strategy Vacuum: Why “We Use ChatGPT” Isn’t a Plan

AI Agent Skill Poisoning: The Supply Chain Attack You Haven’t Heard Of

The Shadow Twin Threats: When AI and Vibe Coding Go Rogue in Your Network

Archives

Meta

Languages

My Speaking Events

Search www.simonroses.com

Categories

Blogroll