ai-governance

IBM Says Opacity Is a Security Risk. With August Four Months Away, That Argument Now Has a Deadline.

John Z Black Apr 13, 2026

AI Security #ai-governance #ibm #anthropic #eu-ai-act #open-source #mythos #glasswing #watsonx

IBM's chief commercial officer argues AI at infrastructure scale must be open and inspectable. With the EU AI Act going into full enforcement in August and Anthropic's Mythos still behind a private access program, this governance debate has a hard date.

ChatGPT Was Leaking Your Conversations Through Its Own Infrastructure, and You Never Knew

John Z Black Mar 31, 2026

AI Security #chatgpt #openai #ai-security #dns-exfiltration #check-point #enterprise-ai #ai-governance #data-leakage #linux-runtime

DOGE Used ChatGPT to Kill $100 Million in Research Grants. Court Filings Describe the Process.

John Z Black Mar 22, 2026

AI Security #ai-governance #doge #chatgpt #government-ai #accountability #neh #ai-policy #rsac-2026

Court depositions describe DOGE staffers using ChatGPT to flag humanities grants as DEI and terminate them -- no domain experts, no review, just a chatbot and a spreadsheet deciding $100 million in funding.

AI Security Is Splitting Into Two Fronts: Governance Controls and Exploitable Plumbing

John Z Black Mar 20, 2026

AI Security #ai-security #ai-governance #spring-ai #vector-store-security #zero-trust #agentic-iam

Enterprise AI security now requires two disciplines at once: policy-level governance for agents and hard application security work in the toolchain beneath them.

AI Governance Is an Implementation Problem Now, Not a Policy Project

John Z Black Mar 19, 2026

AI Security #ai-governance #ai-agents #least-privilege #data-locality #enforcement #cloudflare #unit42

Unit 42 on agent risk, Cloudflare on data-locality controls, and the ICML enforcement controversy all point to the same thing: governance only counts when it's technically enforceable and organizationally defended.