Resilient Cyber w/ Elad Schulman - Secure Enterprise LLM/GenAI Adoption

We sit with Lasso Security CEO and Co-Founder Elad Schulman in this episode.

Lasso focuses on secure enterprise LLM/GenAI adoption, from LLM Applications, GenAI Chatbots, Code Protection, Model Red Teaming, and more. Check them out at https://lasso.security

We dove into a lot of great topics, such as:

• Dealing with challenges around visibility and governance of AI, much like previous technological waves such as mobile, Cloud, and SaaS
• Unique security considerations for different paths of using and building with AI, such as self-hosted models and consuming models as-a-service from SaaS LLM providers
• Potential vulnerabilities and threats associated with AI-driven development products such as Copilots and Coding assistants
• Software Supply Chain Security (SSCS) risks such as package hallucinations, and both safeguarding the data that goes out to external coding tools, as well as secure consumption of the data coming into the organization
• Securing AI itself and dealing with risks and threats such as model poisoning and implementing model red teaming

Lasso discovered several critical concerns in their AI security research, such as Microsoft’s Copilot exposing thousands of private GitHub repos