In this discussion, Chris Horsley, Founder of Cosive, shares insights on hosting MISP servers in the cloud, freeing cybersecurity teams from outdated hardware. Alex Lawrence, from Sysdig, unveils innovations enhancing Linux security in cloud environments. Oliver Friedrichs, CEO of Pangea, tackles pressing concerns around AI applications, discussing the importance of guardrails to prevent rogue outputs and protect sensitive data. The trio emphasizes the evolving landscape of cybersecurity, underscored by collaboration and AI integration.
Pangea offers a robust solution for AI security by providing guardrails that detect prompt injection vulnerabilities with over 99% accuracy.
Cosive enhances threat intelligence engagement by offering a managed service for MISP, simplifying the integration and maintenance for organizations.
Sysdig delivers real-time visibility and control over Linux environments, focusing on container security to address challenges in modern application delivery.
Deep dives
Securing AI Applications
A product designed to implement security controls around AI applications is highlighted. With enterprises deploying numerous AI apps, issues like prompt injection become significant concerns. Pangea is mentioned as a provider offering guardrails to prevent such vulnerabilities in customer-facing AI agents. Their approach includes a prompt injection detection service that operates with over 99% accuracy, illustrating a robust solution to an evolving challenge in AI security.
Threat Intelligence with Kosev
Kosev, an Australian threat intelligence company, offers a hosted solution for the popular open-source threat intelligence platform called MISP. This product addresses common struggles associated with maintaining and utilizing MISP effectively in organizations. Kosev’s Cloud MISP aims to simplify and enhance engagement with threat intelligence, enabling easier integration with systems like Splunk and firewalls. They focus on providing a managed service that eliminates the technical burdens often associated with threat sharing.
Runtime Security with Sysdig
Sysdig provides a cloud-native runtime security solution tailored specifically for Linux environments, primarily focusing on containerized applications. Their technology intercepts system calls to monitor real-time actions within these applications, aiming to identify and prevent security incidents. This approach ensures effective visibility and control over Linux systems in cloud infrastructures, addressing concerns around ephemeral workloads in modern application delivery. Sysdig aims to protect high-scale environments across various industries, including finance and telecommunication.
Challenges in AI Security
The podcast discusses the ongoing and rapidly evolving threat landscape for AI applications. Companies frequently face incidents where AI outputs can be manipulated into providing misleading information or leaking sensitive data. The challenge lies in detecting these novel attack methods, like indirect prompt injection, which continues to evolve day by day. Organizations are urged to stay proactive with implementing protective measures to avoid incidents before they occur, reflecting a historical pattern of security being an afterthought in rapid technological advancements.
Leveraging AI in Security Solutions
The evolution of security products to include AI functionalities is discussed, focusing on how AI can sift through vast amounts of security data efficiently. With the increasing complexity and volume of alerts, integrating AI with security tools like Sysdig can optimize decision-making processes. This development allows organizations to quickly identify critical security events and better respond to potential threats. The conversation highlights that as technology matures, leveraging LLMs will significantly change how security teams manage incident responses and gain insights from their data.
In this edition of Snake Oilers three vendors pitch host Patrick Gray on their tech:
Pangea: Guardrails and security for AI agents and applications (https://pangea.cloud)
Worried about your AI apps going rogue, being mean to your customers or even disclosing sensitive information? Pangea exists to address these risks. Fascinating stuff.
Cosive: A threat intelligence company that can host your MISP server in AWS. CloudMISP! (https://www.cosive.com/snakeoilers)
Are you running a MISP server on some old hardware under a desk in your SOC? There’s a better way! Cosive can run it for you on AWS so you can just use it instead of wrestling with maintaining it. They also do some CTI consulting to help you get better use out of MISP.
Sysdig: A Linux runtime security platform (https://sysdig.com/)
The modern Windows network is an all-singing, all-dancing, perfectly orchestrated, EDR-protected ballet. The modern Linux production environment… isn’t. Find out how Sysdig can help you get some visibility and control over your Linux fleet.
