Eresus research, advisory, and security news
We collect writing, advisories, and current-event analysis around AI security, the MCP ecosystem, application security, and real attack chaining here.
Latest Posts
Securing Agentic AI: Where MLSecOps Meets DevSecOps
Understanding Agentic AI systems that go beyond traditional AI models by acting autonomously with limited human oversight.
The Evolution of AI Security: Why Secure by Design Matters
Protecting AI systems requires a fundamental shift in security thinking. An intro to the Secure By Design framework applied to AI.
Account Hijacking and Internal Network Attacks in Kubeflow
Exploiting exposed or weakly authenticated Kubeflow dashboard environments to execute internal network pivot attacks.
PAIT-ARV-100 (Archive Slip Bugs in ML Models)
Zip Slip and Tar Slip vulnerabilities in model archive formats (like Model-Archive or PyTorch .pth zips) overwriting critical system files.
Beyond Jailbreaks: Contextual Red Teaming for Agentic AI
Why traditional prompt jailbreaking is insufficient, and how contextual red teaming is required for multi-step agentic systems.