The OWASP Top 10 for LLMs 2025: How GenAI Risks Are Evolving
ID: f6e0a3d7-2d1b-5857-b9a6-8cf4a56cb67b
STIX ID: report--f6e0a3d7-2d1b-5857-b9a6-8cf4a56cb67b
Feed Name: HackerOne Blog
Threat Score
HackerOne presents a concise review of the OWASP Top 10 LLM vulnerabilities for 2025, detailing categories such as prompt injection, sensitive information disclosure, supply chain and data/model poisoning, improper output handling, excessive agency, system prompt leakage, vector/embedding weaknesses, misinformation, and unbounded consumption, and offering mitigations like input/output sanitization, least privilege, supply chain vetting, rate limiting, sandboxing, and human-in-the-loop controls.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.