Join us for the GenAI Security Project’s – Agentic AI Security Summit, Europe Dec 10 London

|

REGISTER NOW !
Article, Featured

OWASP Agentic AI Taxonomy in Action: From Theory to Tools

/ / Article, Featured / ,

As OWASP’s Agentic Security Initiative (ASI) gains momentum, its impact is already being felt across the AI security landscape. The Agentic AI – Threats and Mitigations taxonomy is now powering real-world developer tools that embed security into the workflows of AI builders and red teams. In this post, we highlight three standout tools—PENSAR, SPLX.AI Agentic Radar, and AI&ME—that are adopting the OWASP ASI taxonomy to help teams test, defend, and build secure agentic systems. This growing ecosystem is also informing the development of the forthcoming OWASP Top 10 for Agentic AI. Join us at DEF CON and Black Hat to help shape what’s next.

OWASP Agentic AI Taxonomy in Action: From Theory to Tools Read Post »

Article

OWASP Gen AI Incident & Exploit Round-up, Q2’25

/ / Article /

OWASP Gen AI Incident & Exploit Round-up, Q2 (Mar-Jun) 2025 About the Round-up This is not an exhaustive list, but a semi-regular blog where we aim to track and share insights on recent exploits involving or targeting Generative AI. Our goal is to provide a clear summary of each reported incident, including its impact, a

OWASP Gen AI Incident & Exploit Round-up, Q2’25 Read Post »

Announcement

CyberRisk Alliance and OWASP Join Forces to Advance Application Security and AI Education Across the Cyber Ecosystem

/ / Announcement /

New Strategic Partnership with OWASP and the OWASP Gen AI Security Project Includes Joint Content, Events, and Research Initiatives NEW YORK, NY, UNITED STATES, June 26, 2025 /EINPresswire.com/ — CyberRisk Alliance (CRA), a business intelligence company serving the cybersecurity ecosystem, today announced a new strategic partnership with the Open Worldwide Application Security Project (OWASP Foundation),

CyberRisk Alliance and OWASP Join Forces to Advance Application Security and AI Education Across the Cyber Ecosystem Read Post »

Events

Recap from OWASP Gen AI Security Project’s – NYC Insecure Agents Hackathon

/ / Events /

Creating an insecure agent is surprisingly easy. There are new tools and frameworks available that make creating AI Agents relatively simple. However, AI Agents are prone to several threats outlined in the recent Agentic AI – Threats and Mitigations guide that was released in February. The OWASP Gen AI Security Project’s recently put on a hackathon in NYC with the goal of building insecure agents. In this blog post we recap the event and the most common security findings we saw from the submissions.

Recap from OWASP Gen AI Security Project’s – NYC Insecure Agents Hackathon Read Post »

Article

Securing AI’s New Frontier: The Power of Open Collaboration on MCP Security

/ / Article / ,

As AI systems begin interacting with live tools and data via the Model Context Protocol (MCP), new security risks emerge that traditional approaches can’t fully address. This post summarizes key insights from the OWASP GenAI Security Project’s latest research on securing MCP, offering practical, defense-in-depth strategies to help developers and defenders build safer agentic AI applications in real time.

Securing AI’s New Frontier: The Power of Open Collaboration on MCP Security Read Post »

Announcement

OWASP Gen AI Security Project Announces Nine New Sponsors and Major RSA Conference Presence to Advance Generative AI Security

/ / Announcement /

WILMINGTON, Del., April 17, 2025 — The Open Worldwide Application Security Project’s (OWASP) flagship Generative AI Security Project (https://genai.owasp.org) today announced the addition of nine new sponsors, signaling continued momentum and investment in advancing the state of security for generative AI technologies. The new sponsors—Acuvity, ActiveFence, ByteDance, Cobalt, Protecto, SplxAI, Trend Micro, Troj.AI and Unbound Security—represent a

OWASP Gen AI Security Project Announces Nine New Sponsors and Major RSA Conference Presence to Advance Generative AI Security Read Post »

Announcement

OWASP Top 10 for LLM is now the GenAI Security Project and promoted to OWASP Flagship status

/ / Announcement / ,

WILMINGTON, Del. — March 27, 2025 — The Open Worldwide Application Security Project (OWASP) announced today that its OWASP Top 10 for LLM and Generative AI List has become The OWASP Gen AI Security Project. The name change reflects the popularity of the initial Top 10 List and the recognition of the project’s expanded focus.

OWASP Top 10 for LLM is now the GenAI Security Project and promoted to OWASP Flagship status Read Post »

Article

OWASP Gen AI Incident & Exploit Round-up, Jan-Feb 2025

/ / Article /

About the Round-up This is not an exhaustive list, but a semi-regular blog where we aim to track and share insights on recent exploits involving or targeting Generative AI. Our goal is to provide a clear summary of each reported incident, including its impact, a breakdown of the attack, relevant vulnerabilities from the OWASP Top

OWASP Gen AI Incident & Exploit Round-up, Jan-Feb 2025 Read Post »

Announcement

OWASP AI Security Guidelines offer a supporting foundation for new UK government AI Security Guidelines

/ / Announcement /

The UK Government Department for Science Innovation and Technology (DSIT) published its new voluntary Code of Practice (CoP) for the Cyber Security of AI today, January 31. Based upon 13 principles, the CoP clarifies the responsibilities of different AI stakeholders and is, for the first time, structured alongside the typical AI system lifecycle from planning

OWASP AI Security Guidelines offer a supporting foundation for new UK government AI Security Guidelines Read Post »

Announcement, Resources

Announcing the OWASP Gen AI Red Teaming Guide

/ / Announcement, Resources / ,

The OWASP Top 10 for LLM and Generative AI project , genai.owasp.org, team is thrilled to unveil the Gen AI Red Teaming Guide which provides a practical approach to evaluating LLM and Generative AI vulnerabilities—a new resource from our Red Teaming Initiative.  As Generative AI technologies like the Large Language Models (LLMs) evolve at breakneck speed, the

Announcing the OWASP Gen AI Red Teaming Guide Read Post »

OWASP and the OWASP logo are trademarks of the OWASP Foundation, Inc. Unless otherwise specified, all content on the site is Creative Commons Attribution-ShareAlike v4.0 and provided without

warranty of service or accuracy. For more information, please refer to our General Disclaimer.  – Copyright © 2025 OWASP Foundation, Inc.

Scroll to Top