AI Security Research Blog | Penaxtra

Categories

Tags

prompt-injection 4 ai-spm 4 owasp-agentic 4 agentic-ai 3 mcp 3 agents 3 ai-security-2026 2 mcp-security 2 autonomous-attacks 2 runtime 2 attack-surface 2 supply-chain 2 compliance 2 ai-asset-inventory 2 ai-agents 1 mitre-atlas 1 ai-worms 1 llm-agent 1 eu-ai-act 1 high-risk 1 owasp-llm01 1 testing 1 llm-security 1 categories 1 fundamentals 1 ai-bom 1 discovery 1 nist-ai-600-1 1 nist 1 vector-store 1 rag 1 tenant-isolation 1 incident 1

Editorial

CadenceWeekly
ContributorsEngineering, Security Research, Compliance
SourceLive deployments

Need the platform?

The engineering wiki is one slice of the Penaxtra AI-SPM platform.

Platform overview →

15 articles, newest first. Click a category in the left sidebar to narrow the list; the column headers below are static labels.

Article	Category	Read	Published
The Q1 2026 GenAI Exploit Round-up: Eight Incidents, One CVE A read-through of the quarter's eight notable GenAI security incidents, why only one of them carried a CVE, and what that gap means for how you track AI risk. Tolga SEZER ai-security-2026agentic-aimcp-securityprompt-injectionai-spm	Attacks and defence	8 min	2026-06-09
The First Autonomous AI-Agent Intrusion: What It Means for Defenders An LLM agent reportedly ran a full intrusion, from RCE to database exfiltration, in under an hour with no operator. What changed, and where you catch it. Penaxtra Security Research ai-agentsautonomous-attacksruntimemitre-atlas	Attacks and defence	7 min	2026-06-05
The Self-Propagating AI Worm: Separating the Signal From the Panic Researchers demonstrated an open-weight LLM driving a self-propagating worm across a simulated network. Here is what actually changed for defenders, and what did not. Penaxtra Security Research ai-wormsautonomous-attacksattack-surfaceruntime	Attacks and defence	7 min	2026-06-05
AI Security in the First Half of 2026: The Breaches That Ended the Debate H1 2026 AI security review: the breaches that turned theory into incident queues, why posture management is now essential, and the H2 outlook. Tolga SEZER ai-security-2026agentic-aimcp-securityprompt-injectionai-spm	Attacks and defence	11 min	2026-05-31
Frontier Agents Cut Both Ways - Opus 4.8, Dynamic Workflows, and the First In-the-Wild LLM-Agent Intrusion The week frontier models learned to run a thousand parallel subagents is the same week someone pointed one at a network and dumped a database in under an hour. Notes for anyone shipping agents to production. Tolga SEZER agentic-aillm-agentattack-surfaceowasp-agenticsupply-chain	Attacks and defence	10 min	2026-05-30
MCP Tool Poisoning - How the Attack Works and How to Stop It MCP tool poisoning explained: line jumping, rug pulls, and the malicious tool descriptions that hijack AI agents, with byte-level payloads and the seven runtime controls that actually held. Tolga SEZER mcpagentsprompt-injectionowasp-agenticsupply-chain	Attacks and defence	13 min	2026-05-27
EU AI Act Cybersecurity Requirements for High-Risk AI Systems A practitioner's guide to Article 15 cybersecurity, Article 9 risk management, and Article 17 quality management for high-risk AI providers. What auditors will actually ask in 2026. Penaxtra Compliance Engineering eu-ai-actcompliancehigh-risk	Compliance and regulation	8 min	2026-05-23
MCP Security Checklist - Securing Model Context Protocol Servers in Enterprise AI Systems Practical checklist for security teams reviewing MCP server deployments. Covers tool surface, permission scoping, indirect injection, confused deputy, and runtime enforcement. Penaxtra Security Research mcpagentsowasp-agentic	Attacks and defence	6 min	2026-05-16
Prompt Injection Testing for Enterprise LLM Apps How to test enterprise LLM applications against prompt injection in a way that produces auditor-acceptable evidence. Covers direct injection, indirect injection via RAG, tool-output injection, and judge bias. Penaxtra Security Research prompt-injectionowasp-llm01testing	Attacks and defence	7 min	2026-05-09
AI-SPM vs LLM Security - What is the Difference? AI-SPM and LLM Security are complementary disciplines, not substitutes. LLM Security is the focused layer; AI-SPM is the broader programme. Here is what each covers. Penaxtra Engineering ai-spmllm-securitycategories	AI-SPM fundamentals	6 min	2026-05-02
What is AI Security Posture Management? AI Security Posture Management (AI-SPM) is the continuous process of discovering, assessing, securing, and proving the compliance posture of AI systems. Here is what it covers and why it matters. Penaxtra Engineering ai-spmfundamentalsai-asset-inventory	AI-SPM fundamentals	7 min	2026-04-25
How to Build an AI Asset Inventory That Survives the First Audit Building an AI asset inventory looks easy until the first auditor asks for it. Eight categories, two failure modes, and the practical script that worked for us. Penaxtra Engineering ai-asset-inventoryai-bomdiscovery	AI-SPM fundamentals	6 min	2026-04-18
OWASP Agentic Top 10 Walkthrough - What Actually Matters in Production A practitioner's reading of the OWASP Agentic Top 10 T1-T15 list. Which entries we see exploited in the wild, which are still mostly theoretical, and the controls that work. Penaxtra Security Research owasp-agenticagentsmcp	Attacks and defence	6 min	2026-04-11
NIST AI 600-1 Profile in 20 Minutes - What Auditors Care About A practitioner's reading of NIST AI 600-1, the Generative AI Profile under the NIST AI RMF. Which functions matter most, the three controls auditors ask about every time, and how to map them to live evidence. Penaxtra Compliance Engineering nist-ai-600-1nistcompliance	Compliance and regulation	6 min	2026-04-04
Vector Database Tenant Isolation - The Quiet Failure Mode We Keep Finding A walkthrough of the cross-tenant retrieval failure mode in production vector stores, why namespace separation alone is not enough, and the test that catches it. Penaxtra Platform Engineering vector-storeragtenant-isolationincident	Architecture and operations	5 min	2026-03-28