Gary McGraw3d ago

Thanks again to @gadi and company for organizing [un]prompted. BIML can't wait for the next one. Looking like this Fall...

#MLsec #Ai #ML

https://berryvilleiml.com/2026/03/13/unprompted-helping-to-define-mlsec/

[un]prompted helping to define MLsec | BIML

One of our key missions at BIML is to define the future of machine learning security. [un]prompted was hugely helpful in

Berryville Institute of Machine Learning
Show threadGary McGraw3d ago

A complete Silver Bullet archive (with episodes starting twenty years ago in 2006) can be found on my website.

#swsec #appsec #MLsec

https://www.garymcgraw.com/technology/silver-bullet-podcast/

Silver Bullet Podcast | Gary McGraw

The Silver Bullet Podcast with Gary McGraw features interviews with security gurus

Gary McGraw3d ago

The Silver Bullet Security Podcast rides again. Our first relaunch episode (episode 154 for those of you counting) can be found on the BIML website.

#MLsec #swsec #appsec #ML #AI

Future episodes are already planned with Giovanni Vigna, Phil Venables, and Nicolas Papernot.

Tune in and subscribe.

https://berryvilleiml.com/podcast/

Silver Bullet Security Podcast | BIML

Welcome to the Silver Bullet Security Podcast, created and hosted by the Berryville Institute of Machine Learning,

Berryville Institute of Machine Learning
Gary McGraw4d ago

Just for the record, this is not really #MLsec...this is using #ML for security ops. Which means...whatever. yawnzies.

https://codewall.ai/blog/how-we-hacked-mckinseys-ai-platform

How We Hacked McKinsey's AI Platform

An autonomous AI agent found a SQL injection in McKinsey's Lilli AI platform. What it extracted was worse than we expected.

Gary McGraw5d ago

What is "beigification" in AI, and is it good or bad?

#AI #ML #MLsec

https://berryvilleiml.com/2026/03/12/on-beigification/

On “Beigification” | BIML

Lets face it, beige has a bad name. Maybe it was the omnipresent Docker khakis of middle management 20 years ago, or may

Berryville Institute of Machine Learning
Gary McGraw5d ago

NEW BIML Bibliography entry

https://arxiv.org/abs/2310.08754

Tokenizer Choice For LLM Training: Negligible or Crucial?

Mehdi Ali, et al

Often ignored, this kind of work is at the foundation of ML. Using languages to experiment. Straightforward but not profound work.

#MLsec #Representation #Tokenization

https://berryvilleiml.com/references/

Show threadGary McGraw5d ago
This work is apparently being commercialized. That is a tell regarding the nascent state of #MLsec.
Gary McGraw5d ago

NEW BIML Bibliography entry

https://arxiv.org/abs/2601.09923

CaMeLs Can Use Computers Too: System-level Security for Computer Use Agents

Hanna Foerster, et al (Shumailov and Papernot)

This paper tries so hard to be good but shows what happens when security engineering plays second fiddle to agentic AI (through Computer Use Agents using a GUI). Results are thin and repeated. Pretends that your PC is somehow “isolated.”

#MLsec #Agents #Engineering

https://berryvilleiml.com/references/

Gary McGraw5d ago

You owe your soul to the company store. Company scrip is back, but not in the coal mines ...in the AI software mines.

#ML #AI #MLsec

https://www.businessinsider.com/ai-compute-compensation-software-engineers-greg-brockman-2026-3

Silicon Valley is buzzing about this new idea: AI compute as compensation

AI inference emerges as a critical factor in tech compensation, impacting engineer productivity and Silicon Valley hiring dynamics.

Business Insider
Gary McGraw5d ago

Oh look, AI generated fake stories in the real world. #MLsec

https://www.bellingcat.com/news/2026/03/12/ai-used-to-promote-non-existent-evacuation-flights-from-the-middle-east/

AI Used to Promote Non-Existent Evacuation Flights From the Middle East - bellingcat

A Dutch newspaper published a story about private evacuation flights from Dubai, but the photo shows signs of AI generation and the flights appear never to have existed.

bellingcat