Resilient Cyber
Resilient Cyber brings listeners discussions from a variety of Cybersecurity and Information Technology (IT) Subject Matter Experts (SME) across the Public and Private domains from a variety of industries. As we watch the increased digitalization of our society, striving for a secure and resilient ecosystem is paramount.
Resilient Cyber
Resilient Cyber w/ Elad Schulman - Secure Enterprise LLM/GenAI Adoption
•
Chris Hughes
We sit with Lasso Security CEO and Co-Founder Elad Schulman in this episode.
Lasso focuses on secure enterprise LLM/GenAI adoption, from LLM Applications, GenAI Chatbots, Code Protection, Model Red Teaming, and more. Check them out at https://lasso.security
We dove into a lot of great topics, such as:
- Dealing with challenges around visibility and governance of AI, much like previous technological waves such as mobile, Cloud, and SaaS
- Unique security considerations for different paths of using and building with AI, such as self-hosted models and consuming models as-a-service from SaaS LLM providers
- Potential vulnerabilities and threats associated with AI-driven development products such as Copilots and Coding assistants
- Software Supply Chain Security (SSCS) risks such as package hallucinations, and both safeguarding the data that goes out to external coding tools, as well as secure consumption of the data coming into the organization
- Securing AI itself and dealing with risks and threats such as model poisoning and implementing model red teaming
Lasso discovered several critical concerns in their AI security research, such as Microsoft’s Copilot exposing thousands of private GitHub repos