Blog / Threat-Intel
- Even Anthropic isn't untouchable
2026-06-14 · By Dr. Christopher Harrison
Anthropic builds some of the most safety-obsessed models on earth — and on June 12 the U.S. government still forced it to pull two off the shelf, after a demonstration that the right prompts could steer them past their guardrails. If it can happen to Anthropic, the 39.8% leak rate we measured in everyone else's models is the quiet version already running in production.
- Prompt injection is this decade's computer virus
2026-06-13 · By Dr. Christopher Harrison
In the late '90s, viruses went mainstream because the conditions for spreading them did — capability shipped first, safety second. Prompt injection is in that window now, the payload is data exfiltration, and even top-tier teams are getting hit. What ended the virus era was a protection layer that stayed current.
- Self-hosted LLMs are the soft target
2026-06-06 · By Dr. Christopher Harrison
An r/LocalLLaMA thread — “prompt injection is killing our self-hosted LLM” — matches what we measured: small local models fold to injection first. The fix lives outside the model.
- Prompt injection just made the front page
2026-06-05 · By Dr. Christopher Harrison
A Meta AI hack in The Guardian, AI exposure on Dark Reading's critical-threats list — prompt injection has moved from research demos to named-brand headlines. The defense that holds is containment, not detection.
- Reasoning models can leak through their chain-of-thought
2026-06-01 · By Dr. Christopher Harrison
DeepSeek-r1 put the secret in reasoning_content while leaving the visible answer empty. A guardrail that only scans the answer sees nothing. Here's the gap we found — and closed.
- Six small models, one forged-history attack — every one leaked
2026-05-31 · By Dr. Christopher Harrison
We replayed a forged-assistant-turn attack across 11 models. Six small open-source models handed back SHADOW-FALCON-7 verbatim. Through Bridgekeeper, all six were blocked.
- Containment vs. detection: why architecture beats classifiers
2026-05-20 · By Dr. Christopher Harrison
Detection guardrails score text. Containment changes what the model is allowed to do. Here's why the distinction decides whether an injection leaks.
- Why protection has a shelf life — and what you're actually paying for
2026-05-06 · By Dr. Christopher Harrison
Last month's protection is worth less than this month's. Attack techniques move; coverage decays. The continuously-maintained feed is the part that keeps a containment layer honest.