Around 400 and people gathered in London on December 10 the for the projects first Agentic AI Security Summit in Europe. Where the GenAI Security Project’s Agentic Security Initiative team released the OWASP Top 10 for Agentic Applications.
GenAI Security Agentic Security Summit, Europe – Livestream Read Post »
Keren Katz and Rock Lambros explore the opportunities and risks of working with generative AI agents in both enterprise and customer-facing applications. They unpack critical topics like vulnerabilities in enterprise AI systems, unpredictable agent behavior, adversarial prompts, and the security challenges of interconnected AI ecosystems. Sharing real-world examples, they highlight the very real implications of
The State Of Agentic AI Security: Risks, Governance, and Global Regulation Read Post »
Explore the OWASP Agentic AI CTF through a hands-on walkthrough of the FinBot demo. This session highlights the “goal manipulation” challenge, revealing how attackers can exploit agentic AI systems and showcasing strategies to identify and defend against these advanced threats. FinBot is part of the OWASP GenAI Security Project’s Agentic Security Initiative, created to equip
Agentic AI Capture The Flag (CTF) – FinBot DEMO: Goal Manipulation Read Post »
The OWASP Gen AI Security Project – Agentic Security Initiative, brought together community members, experts and contributors virtually and in 4 location around the globe (London, Las Vegas – Black Hat, Athens, and TelAviv to kick-off work of refining the OWASP Agentic Threats and Mitigations, to begin to distil into a prioritized OWASP Top 10
OWASP AI Agentic Top 10 Project Kick-off – Global Livestream Read Post »
As agentic AI systems transition from conceptual models to real-world deployments, MCP (Model Context Protocol) agents are emerging as a critical interface layer — and the next major attack vector. These autonomous, API-driven actors aren’t just executing tasks; they’re reshaping how LLMs interact with tools, data, and infrastructure across enterprise environments. In this webinar, we’ll
Why MCP Agents Are the Next Cyber Battleground Read Post »
Session 3 of 7 The session delves into agentic threat modeling, emphasizing the vulnerabilities in multi-agent AI architectures. It covers attack scenarios like memory manipulation and tool misuse, illustrating how malicious actors can exploit AI agents to cause financial losses or data breaches. MCP-related threats were also explored, including tool description manipulation, prompt injections, and
Agentic Open Workshop – Agentic AI Threat Modeling Read Post »
Session 4 of 7 The session focused on the “Insecure Code Examples” initiative led by Allie Howell, highlighting efforts to identify vulnerabilities in agentic frameworks through hands-on testing and community engagement. The initiative includes a repository of insecure code samples built using frameworks like Langgraph, Autogen, CrewAI, and others. A recent hackathon in New York
Open Agentic Workshop – Insecure Code Examples Read Post »
Session 6 of 7 The session focused on secure agentic applications, led by experts from AWS, Intuit, and Pangea. It outlined a methodology for identifying threats in agentic AI systems, emphasizing development lifecycle stages, key components, architectures, and operational environments. The discussion highlighted key threats such as memory poisoning, tool misuse, and identity spoofing in
Open Agentic Workshop – Securing Agentic Apps Read Post »
Session 4 of 7 The sessions collectively addressed agentic AI threat modeling, focusing on vulnerabilities in multi-agent systems across various platforms, including Palo Alto Networks, Cisco, and the Maestro framework. Key topics included memory manipulation, tool misuse, and identity misconfigurations, with specific attack scenarios illustrating how malicious actors can manipulate agents to perform unauthorized actions,
Agentic Open Workshop – Agentic Threat Modeling Framework Read Post »
Session 7 of 7 The session on the Agentic AI Security Landscape Report outlined its structure and objectives, targeting CSOs, AI developers, security researchers, and policymakers. The report is divided into four pillars: regulatory context, incident analysis, solutions ecosystem, and future trends. It emphasizes the rapidly evolving landscape of agentic AI, the challenges of fragmented
Open Agentic Workshop – Agentic Landscape Read Post »
warranty of service or accuracy. For more information, please refer to our General Disclaimer. – Copyright © 2025 OWASP Foundation, Inc.