Attacks and defence | AI Security Research Blog | Penaxtra

Categories

Tags

prompt-injection 4 ai-spm 4 owasp-agentic 4 agentic-ai 3 mcp 3 agents 3 ai-security-2026 2 mcp-security 2 autonomous-attacks 2 runtime 2 attack-surface 2 supply-chain 2 compliance 2 ai-asset-inventory 2 ai-agents 1 mitre-atlas 1 ai-worms 1 llm-agent 1 eu-ai-act 1 high-risk 1 owasp-llm01 1 testing 1 llm-security 1 categories 1 fundamentals 1 ai-bom 1 discovery 1 nist-ai-600-1 1 nist 1 vector-store 1 rag 1 tenant-isolation 1 incident 1

Editorial

CadenceWeekly
ContributorsEngineering, Security Research, Compliance
SourceLive deployments

Need the platform?

The engineering wiki is one slice of the Penaxtra AI-SPM platform.

Platform overview →

← All articles

9 articles, newest first. Click a category in the left sidebar to narrow the list; the column headers below are static labels.

Article	Category	Read	Published
The Q1 2026 GenAI Exploit Round-up: Eight Incidents, One CVE A read-through of the quarter's eight notable GenAI security incidents, why only one of them carried a CVE, and what that gap means for how you track AI risk. Tolga SEZER ai-security-2026agentic-aimcp-securityprompt-injectionai-spm	Attacks and defence	8 min	2026-06-09
The First Autonomous AI-Agent Intrusion: What It Means for Defenders An LLM agent reportedly ran a full intrusion, from RCE to database exfiltration, in under an hour with no operator. What changed, and where you catch it. Penaxtra Security Research ai-agentsautonomous-attacksruntimemitre-atlas	Attacks and defence	7 min	2026-06-05
The Self-Propagating AI Worm: Separating the Signal From the Panic Researchers demonstrated an open-weight LLM driving a self-propagating worm across a simulated network. Here is what actually changed for defenders, and what did not. Penaxtra Security Research ai-wormsautonomous-attacksattack-surfaceruntime	Attacks and defence	7 min	2026-06-05
AI Security in the First Half of 2026: The Breaches That Ended the Debate H1 2026 AI security review: the breaches that turned theory into incident queues, why posture management is now essential, and the H2 outlook. Tolga SEZER ai-security-2026agentic-aimcp-securityprompt-injectionai-spm	Attacks and defence	11 min	2026-05-31
Frontier Agents Cut Both Ways - Opus 4.8, Dynamic Workflows, and the First In-the-Wild LLM-Agent Intrusion The week frontier models learned to run a thousand parallel subagents is the same week someone pointed one at a network and dumped a database in under an hour. Notes for anyone shipping agents to production. Tolga SEZER agentic-aillm-agentattack-surfaceowasp-agenticsupply-chain	Attacks and defence	10 min	2026-05-30
MCP Tool Poisoning - How the Attack Works and How to Stop It MCP tool poisoning explained: line jumping, rug pulls, and the malicious tool descriptions that hijack AI agents, with byte-level payloads and the seven runtime controls that actually held. Tolga SEZER mcpagentsprompt-injectionowasp-agenticsupply-chain	Attacks and defence	13 min	2026-05-27
MCP Security Checklist - Securing Model Context Protocol Servers in Enterprise AI Systems Practical checklist for security teams reviewing MCP server deployments. Covers tool surface, permission scoping, indirect injection, confused deputy, and runtime enforcement. Penaxtra Security Research mcpagentsowasp-agentic	Attacks and defence	6 min	2026-05-16
Prompt Injection Testing for Enterprise LLM Apps How to test enterprise LLM applications against prompt injection in a way that produces auditor-acceptable evidence. Covers direct injection, indirect injection via RAG, tool-output injection, and judge bias. Penaxtra Security Research prompt-injectionowasp-llm01testing	Attacks and defence	7 min	2026-05-09
OWASP Agentic Top 10 Walkthrough - What Actually Matters in Production A practitioner's reading of the OWASP Agentic Top 10 T1-T15 list. Which entries we see exploited in the wild, which are still mostly theoretical, and the controls that work. Penaxtra Security Research owasp-agenticagentsmcp	Attacks and defence	6 min	2026-04-11