8en N@$$!

1.7K posts

8en N@$$! banner
8en N@$$!

8en N@$$!

@ben_nassi

🎓 Faculty, ECE @TelAvivUni | 🎩 @BlackHatEvents Review Board | Cybersecurity | LLM & AI AppSec

Israel Katılım Haziran 2018
3.8K Takip Edilen1.4K Takipçiler
Sabitlenmiş Tweet
8en N@$$!
8en N@$$!@ben_nassi·
@dangoodin001 just covered our new study on 𝗕𝗲𝘄𝗮𝗿𝗲 𝗼𝗳 𝗔𝗴𝗲𝗻𝘁𝗶𝗰 𝗕𝗼𝘁𝗻𝗲𝘁𝘀 Co-authored by Aya Spira, Stav Cohen, Elad Feldman, Ron Bitton, Avishai Wool, and @ben_nassi . A joint work by @TelAvivUni @TechnionLive @Intuit A link to the the website containing the paper: sites.google.com/view/agentic-b… #promptware #agents #botnets #agentic_botnet
Ars Technica@arstechnica

Hackers can use 9 of the most popular AI tools to assemble massive botnets arstechnica.com/security/2026/…

English
0
0
2
173
8en N@$$! retweetledi
נאור יחיא
נאור יחיא@NaorIhia·
הגילוי הנאות של אליסף פרץ
עברית
19
27
234
10.8K
8en N@$$!
8en N@$$!@ben_nassi·
@dangoodin001 just covered our new study on 𝗕𝗲𝘄𝗮𝗿𝗲 𝗼𝗳 𝗔𝗴𝗲𝗻𝘁𝗶𝗰 𝗕𝗼𝘁𝗻𝗲𝘁𝘀 𝗧𝗟𝗗𝗥; We show that attackers can exploit predictable LLM hallucinations of resource identifiers to launch scalable, untargeted prompt injection attacks without requiring any direct channel to LLM applications. By preemptively registering hallucinated resources—a technique we call adversarial hallucination squatting (HalluSquatting)—we demonstrate remote tool execution and remote code execution at scale across a range of popular agentic LLM applications, which could be exploited to the establishment of a botnet. Co-authored by Aya Spira, Stav Cohen, Elad Feldman, Ron Bitton, Avishai Wool, and @ben_nassi. A joint work by @Tel_Aviv_Uni @TechnionLive @Intuit A link to the website containing the paper: sites.google.com/view/agentic-b… Many thanks to @wunderwuzzi23 and @mbrg0 for their comments on our findings. #promptware #agents #botnets #agentic_botnet #prompt_injection #infosec #llm #cybersecurity #agentic_security
Ars Technica@arstechnica

Hackers can use 9 of the most popular AI tools to assemble massive botnets arstechnica.com/security/2026/…

English
0
1
5
548
8en N@$$! retweetledi
Kim Zetter
Kim Zetter@KimZetter·
If you're a security researcher who gets hit with a cease-and-desist letter or threat of lawsuit for good-faith research you've done, you can get help from Security Research Legal Defense Fund - a nonprofit that provides grants to help fund legal defense srldf.org
English
3
53
116
10.2K
8en N@$$!
8en N@$$!@ben_nassi·
You can find the talks from Real World AI Security on a dedicated YouTube channel we opened (many thanks to @danboneh for his efforts in uploading them). There are a few missing videos of speakers who did not permit us to upload their talks. For those who asked me for the slides of my talk, here is the link to the video of my talk on the Promptware Kill Chain (co-authored by @BrodtOleg , Elad Feldman, @schneierblog , and @ben_nassi ) Video (on YouTube): youtu.be/JiwSHjBxmqc Paper (arXiv): arxiv.org/abs/2601.09625… World AI Security (YouTube channel): @RealWorldAISecConf" target="_blank" rel="nofollow noopener">youtube.com/@RealWorldAISe#RWAISec #real_word_ai_security #ai #infosec #llm #security #cybersecurity #promptware #prompt_injection
YouTube video
YouTube
English
1
2
10
494
8en N@$$! retweetledi
Michael Bargury
Michael Bargury@mbrg0·
two weeks left on the tokyo agent security summit cfp! we're going to start w early acceptance next week so much cool stuff so far!
Michael Bargury tweet media
English
1
2
6
762
8en N@$$! retweetledi
Mike Takahashi
Mike Takahashi@TakSec·
@Stanford The Real World AI Security Conference 2026, led by Dan Boneh, was incredible. Personal highlights: - Deep convos on AI agent security with red teamers, blue teamers, researchers, builders, and defenders - Great talks from @wunderwuzzi23 and @ben_nassi - @zenitysec Happy Hour - Robot hacking w/ @BT6_Official at @ARIA_research I had the chance to demo live hacking a ROBOT with @BT6_Official: “Kinetic Prompt Injection: Live Jailbreak of an Embodied Agent” Huge shoutout to my die hard brothers @PhilDursey, @Ph1R3574R73r, and @Eito_Miyamura for the demo. Great seeing @danboneh, @mbrg0, Keren Katz, John Sotiropoulos, Alan Aqrawi, @wunderwuzzi23, and many others pushing this space forward. AI security is moving fast, but AI agent adoption is moving even faster. It was exciting seeing everyone is attacking this problem from so many different angles. There’s still a lot of debate around the role and efficacy of model-level guardrails in defending AI systems. Thanks to @zenitysec for supporting the event. Stay tuned for the robot hacking post. 👀
Mike Takahashi tweet mediaMike Takahashi tweet mediaMike Takahashi tweet mediaMike Takahashi tweet media
English
1
6
19
2K
8en N@$$!
8en N@$$!@ben_nassi·
ted • Visible to anyone on or off LinkedIn My few takeaways from the 1st Real World AI Security Conference. 1. 𝗧𝗲𝘅𝘁𝘂𝗮𝗹 𝗣𝗿𝗼𝗺𝗽𝘁 𝗜𝗻𝗷𝗲𝗰𝘁𝗶𝗼𝗻𝘀. Based on the talks given by Google, Anthropic, and OpenAI, I am happy to see that the biggest AI whales improve their mitigations against textual prompt injections. My feeling is that their mitigations are at a level preventing 99.9% of the attacks against their systems, allowing only out-of-distribution attacks to bypass. This is a significant improvement from where we were a year ago, when many studies showed how insecure production systems are. 2. 𝗠𝘂𝗹𝘁𝗶𝗺𝗼𝗱𝗮𝗹 𝗣𝗿𝗼𝗺𝗽𝘁 𝗜𝗻𝗷𝗲𝗰𝘁𝗶𝗼𝗻. I am more concerned at this time about multimodal prompt injections because it seems like less progress is invested in this field. My feeling is that most systems remain vulnerable to multimodal prompt injections. Given that many humanoids will be deployed in the next few years, we must invest significant efforts in securing systems in the latent space against multimodal prompt injections. 3. 𝗣𝗿𝗼𝗺𝗽𝘁 𝗜𝗻𝗷𝗲𝗰𝘁𝗶𝗼𝗻 𝗶𝗻 𝘁𝗵𝗲 𝗪𝗶𝗹𝗱. The web is rapidly changing in light of the increasing use of agents. Based on Palo Alto and CISPA talks, I believe that the web has become the most common place to meet "prompt injections in the wild". Whether they succeed or not remains a mystery because we are currently lacking the ability to measure their success rate on the client side. 4. 𝗡𝗲𝘄 𝗧𝗲𝗰𝗵𝗻𝗼𝗹𝗼𝗴𝗶𝗲𝘀 𝘁𝗼 𝗦𝗲𝗰𝘂𝗿𝗲 𝗔𝗴𝗲𝗻𝘁𝘀 Given that the web is rapidly changing in light of the increasing volume of agentic browsing, we will have to develop and adopt new technologies to support this change. I believe newer technologies will be invented in the next few years, and this field will become a focus for academics and industry. 5. 𝗧𝗵𝗲 𝗘𝗳𝗳𝗲𝗰𝘁 𝗼𝗳 𝘁𝗵𝗲 𝗜𝗺𝗽𝗿𝗼𝘃𝗲𝗺𝗲𝗻𝘁 𝗶𝗻 𝗟𝗟𝗠𝘀 𝗼𝗻 𝗦𝗰𝗶𝗲𝗻𝗰𝗲 𝗮𝗻𝗱 𝗜𝗻𝗱𝘂𝘀𝘁𝗿𝘆. Based on the talk delivered on how good LLMs have became in finding vulnerabilities in open sources, I expect to see a similar effect in science in general. I am not even sure whether scientists will be the most important leaders in their field in a few years from now, because I believe that most of the significant discoveries will be made by LLMs. Scientists and engineers will have to reinvent themselves in light of these changes. Anything else I forgot? #infosec #ai #agents #LLMs #prompt_injections #AI_Security #real_world_ai_security #RWAISec26
8en N@$$! tweet media
English
1
1
2
1.7K
8en N@$$!
8en N@$$!@ben_nassi·
We have already sold out all tickets for RWAISec'26. However, in response to the many requests we received, we have decided to 𝗿𝗲𝗼𝗽𝗲𝗻 𝗿𝗲𝗴𝗶𝘀𝘁𝗿𝗮𝘁𝗶𝗼𝗻 𝗮𝗻𝗱 𝗺𝗮𝗸𝗲 𝟱𝟬 𝗮𝗱𝗱𝗶𝘁𝗶𝗼𝗻𝗮𝗹 𝘁𝗶𝗰𝗸𝗲𝘁𝘀 𝗮𝘃𝗮𝗶𝗹𝗮𝗯𝗹𝗲. 𝗥𝗲𝗴𝗶𝘀𝘁𝗿𝗮𝘁𝗶𝗼𝗻 𝗶𝘀 𝗻𝗼𝘄 𝗼𝗽𝗲𝗻. If you'd like to attend, please register as soon as possible, as these remaining spots are expected to fill quickly. seclab.stanford.edu/RealWorldAIsec/ #RWAISec #AISecurity #infosec #LLM
8en N@$$! tweet media
English
0
1
5
160
sapir federovsky
sapir federovsky@sapirxfed·
Me & my forehead really enjoyed speaking at @fwdcloudsec 🥹🥹🥹 raise your hand if you saw more than my forehead!😂
sapir federovsky tweet media
English
5
0
49
5.4K
8en N@$$!
8en N@$$!@ben_nassi·
@TalBeerySec עד היום לא הבנתי מה היתרון בזיגבי עבור אמצעים שמחוברים לחשמל 24/7 בבית בגודל סביר יתר על כן, מרבית האמצעים הללו נועדו להתחבר לאינטרנט כדי לאפשר הפעלה מרחוק (לדוגמא דוד שמש), אז למה ללכת על זיגבי לכתחילה?
עברית
1
0
1
93
Tal Be'ery
Tal Be'ery@TalBeerySec·
חכמי הבית החכם: למתגים של אוד ודוד וכאלה, ZigBee או WiFi?
עברית
9
0
0
1.2K
8en N@$$!
8en N@$$!@ben_nassi·
@CoopSport מתברר שאפילו אנג׳לוטי לא מסוגל לקחת החלטה מקצועית ישרה
עברית
1
0
0
104
Ori Cooper
Ori Cooper@CoopSport·
ניימאר זומן
עברית
7
0
50
21.6K
8en N@$$! retweetledi
Ramin Nasibov
Ramin Nasibov@RaminNasibov·
are you this old?
Ramin Nasibov tweet media
English
526
3.4K
32.1K
658.3K