AI Red Teaming & Securing Enterprise AI
AI Security Podcast16 Mai 2025

AI Red Teaming & Securing Enterprise AI

As AI systems become more integrated into enterprise operations, understanding how to test their security effectively is paramount.

In this episode, we're joined by Leonard Tang, Co-founder and CEO of Haize Labs, to explore how AI red teaming is changing.

Leonard discusses the fundamental shifts in red teaming methodologies brought about by AI, common vulnerabilities he's observing in enterprise AI applications, and the emerging risks associated with multimodal AI (like voice and image processing systems). We delve into the intricacies of achieving precise output control for crafting sophisticated AI exploits, the challenges enterprises face in ensuring AI safety and reliability, and practical mitigation strategies they can implement.

Leonard shares his perspective on the future of AI red teaming, including the critical skills cybersecurity professionals will need to develop, the potential for fingerprinting AI models, and the ongoing discussion around protocols like MCP.


Questions asked:

  • 00:00 Intro: AI Red Teaming's Evolution
  • 01:50 Leonard Tang: Haize Labs & AI Expertise
  • 05:06 AI vs. Traditional Red Teaming (Enterprise View)
  • 06:18 AI Quality Assurance: The Haize Labs Perspective
  • 08:50 AI Red Teaming: Real-World Application Examples
  • 10:43 Major AI Risk: Multimodal Vulnerabilities Explained
  • 11:50 AI Exploit Example: Voice Injections via Background Noise
  • 15:41 AI Vulnerabilities & Early XSS: A Cybersecurity Analogy
  • 20:10 Expert AI Hacking: Precisely Controlling AI Output for Exploits
  • 21:45 The AI Fingerprinting Challenge: Identifying Chained Models
  • 25:48 Fingerprinting LLMs: The Reality & Detection Difficulty
  • 29:50 Top Enterprise AI Security Concerns: Reputation & Policy
  • 34:08 Enterprise AI: Model Choices (Frontier Labs vs. Open Source)
  • 34:55 Future of LLMs: Specialized Models & "Hot Swap" AI
  • 37:43 MCP for AI: Enterprise Ready or Still Too Early?
  • 44:50 AI Security: Mitigation with Precise Input/Output Classifiers
  • 49:50 Future Skills for AI Red Teamers: Discrete Optimization


Resources discussed during the episode:

Baselines for Watermarking Large Language Models

Haize Labs

Episoder(51)

The Zero-Click AI Hack: How to Contain the Blast Radius of Autonomous Agents

The Zero-Click AI Hack: How to Contain the Blast Radius of Autonomous Agents

Is an AI agent's identity a workload or an action? Ashish spoke to Elie Bursztein, Distinguished Research Scientist and co-author of Google SAIF (Secure AI Framework) about how it is neither and that ...

29 Apr 47min

Buy vs. Build AI Security: Why [Box.com](http://Box.com) CISO is Creating their Own Agentic SOC

Buy vs. Build AI Security: Why [Box.com](http://Box.com) CISO is Creating their Own Agentic SOC

If your AI solution is just helping humans process the same amount of alerts a little faster, you haven't transformed anything, you've just created a faster hamster wheel.In this episode, Ashish and C...

22 Apr 46min

Anthropic's Project Mythos: Why the "Zero-Day Machine" is Terrifying the Security Industry

Anthropic's Project Mythos: Why the "Zero-Day Machine" is Terrifying the Security Industry

In this episode, Ashish and Caleb discuss the internet-breaking preview of Project Mythos, an unreleased AI model from Anthropic that has shown an unprecedented, terrifying ability to reason through c...

18 Apr 1h 3min

Are AI Security Startups Faking It? How to Separate Signal from Noise

Are AI Security Startups Faking It? How to Separate Signal from Noise

With over 70 startups claiming to have built the perfect "AI SOC Analyst" or "AI Threat Hunter," how do you separate the real products from the vaporware? Recorded live at Decibel RSAC Founder Festiva...

15 Apr 47min

How Lovable Manages 100+ Daily Changes, Vibe Coding & Shadow AI

How Lovable Manages 100+ Daily Changes, Vibe Coding & Shadow AI

What does it actually look like to run security inside one of Europe's fastest-growing AI companies? In this episode, recorded live at the Munich Cybersecurity Conference (MCSC), Ashish Rajan sat down...

2 Apr 57min

Questions Every CISO Must Ask AI Security Vendors

Questions Every CISO Must Ask AI Security Vendors

RSA Conference 2026 is here and the AI agent hype machine is louder than ever. In this episode, Ashish and Caleb cut through the noise and arm CISOs, practitioners, and security teams with a clear-eye...

18 Mar 50min

Will Foundation Models Kill Security Startups?

Will Foundation Models Kill Security Startups?

Did Anthropic just kill the AppSec industry? Following the announcement of Claude Code Security, a tool that finds, reasons about, and fixes code vulnerabilities, major security stocks dropped by 8% ....

5 Mar 59min

How to Build Your Own AI Chief of Staff with Claude Code

How to Build Your Own AI Chief of Staff with Claude Code

What if you could automate your entire work life with a personal AI Chief of Staff? In this episode, Caleb Sima reveals "Pepper," his custom-built AI agent to Ashish that manages emails, schedules mee...

11 Feb 47min

Populært innen Teknologi

lydartikler-fra-aftenposten
romkapsel
tomprat-med-gunnar-tjomlid
teknisk-sett
shifter
energi-og-klima
elektropodden
fornybaren
rss-impressions-2
nasjonal-sikkerhetsmyndighet-nsm
hans-petter-og-co
rss-alt-som-gar-pa-strom
smart-forklart
teknologi-og-mennesker
kunstig-intelligens-med-morten-goodwin
rss-ai-forklart
rss-bouvet-bobler
rss-ki-praten
rss-fish-ships
rss-brukbart