OWASP Gen AI Security Project Newsletter - February Edition

Greetings Gen AI Security Enthusiasts and OWASP Community Members!

Author

GenAI Admin
February 27, 2026

We’re Back at RSAC 2026 in March

Join the OWASP GenAI team at the RSAC 2026 Conference in San Francisco!

Safeguarding GenAI, Agents and Autonomous AI Risk in 2026

March 25th from 8:30am – 12:30pm

As generative AI evolves from prompt-based models to autonomous, agentic systems, the AI attack surface is expanding rapidly. Hosted by the OWASP GenAI Security Project, the OWASP AI Security Summit 2026 brings together practitioners and CISOs to share community-driven research, best practices, and real-world insights on securing LLMs, GenAI, and AI-assisted development, covering Top 10 risks, incident response, and governance for secure AI adoption. Meet and discuss with project and initiative leaders.

OWASP Members: Save on the RSAC 2026 Conference

Join thousands of your peers at RSAC™ 2026 Conference in San Francisco from March 23–26. Discover new strategies, explore bold technologies, and connect with peers who share your challenges and ambitions. As a valued OWASP member, you’ll receive exclusive savings. Don’t just attend the Conference—be part of the community that defines what’s next. 

$150 Discount code off All Access: 16UOWASPAD
$250 Discount code off Expo Plus: 16UOWASPXPD

Register Today!.

See the Full Agenda and List of Side Events HERE !!

New Resources

 

A Practical Guide for Secure MCP Server Development explains how to secure Model Context Protocol (MCP) servers, which connect AI assistants to external tools, APIs, and data while operating with delegated user permissions. Because MCP servers enable dynamic tool use and chained actions, a single vulnerability can have broader consequences than in traditional APIs. The guide provides best practices for secure architecture, authentication, validation, session isolation, and deployment so organizations can safely support powerful, tool-integrated AI systems.

Vendor Evaluation Criteria for AI Red Teaming Providers & Tooling helps organizations assess vendors that offer AI red teaming services or automated testing tools. It outlines clear criteria for evaluating both basic and advanced AI systems, emphasizing realistic threat models, rigorous testing methods, and strong governance to distinguish meaningful security evaluations from superficial ones. The guide enables organizations to confidently select vendors that genuinely reduce real-world AI security risks.

Check Out the Resources Library
Access the full catalog of resources, publications, tools and presentations.
https://genai.owasp.org/resources/

Announcing: Red Teaming Solution Now Open for Submissions - Due 3/20

The OWASP GenAI Security Project is launching a new Red Teaming Solutions Landscape Guide cataloging solutions that support AI and agentic red, blue, and purple teaming.

This release introduces a dedicated Red Teaming lens alongside the existing LLM/GenAI and Agentic AI security landscapes, expanding OWASP’s community-sourced, vendor-neutral catalog of AI security solutions.

👉 How to Submit
Review the OWASP GenAI Security Project’s AI Red Teaming Solutions Taxonomy to understand capability definitions.
🔗 https://lnkd.in/gJXwV_J4 

👉 Then complete the Google submission form. 📣 Submit by March 20th to be included in the launch at RSAC 2026.
🔗 https://lnkd.in/g4u6kAgh

Take the Survey - It’s time to revisit the Top 10 list for LLMs for 2026.

\

In 2023 a small group of us asked a simple question: What actually goes wrong when you put large language models into real software?

At the time, there was plenty of excitement but not much structure. The OWASP Top 10 for Large Language Model Applications was our attempt to bring clarity to that moment. It gave practitioners a shared vocabulary and gave builders something concrete to defend against. Since then, the ecosystem hasn’t exactly stood still.

And now…

It’s time to revisit the core LLM Top 10 for 2026.

👉 Take the Survey:
https://lnkd.in/g9EjtxfP

Recent Videos

Agentic AI Security Summit, London

Around 400 and people gathered in London on December 10 the for the projects first Agentic AI Security Summit in Europe. Where the GenAI Security Project’s Agentic Security Initiative team released the OWASP Top 10 for Agentic Applications.

OWASP GenAI App Security and Risk Virtual Summit

In October of 2025 we held our first GenAI Security and Risk virtual summit at the request of the community. Now all sessions are available on our YouTube. Its a great opportunity to dive deep.
3 Tracks,
23 Session
25 Companies Represented

Join the Monthly Open Project Meeting

Get the latest tea on the project!!

Join us the second Wednesday of the month at 9am PST for our bi-weekly open project meeting. Follow the link below to get the Zoom details. Come Join us !! https://genai.owasp.org/meetings/

Upcoming Events

Join us for the OWASP GenAI & Agentic Security Week at RSAC this year!

March 23-26, 2026
At the Moscone Center 747 Howard Street
San Francisco, California

Join us at InfoSec Europe 2026
Summit and Workshop

June 2-4, 2026
At the ExCeL, London
One Western Gateway, Royal Victoria Dock, London, E16 1XL

Register Interest

For a Full List of upcoming and past Events visit the project website events page.
https://genai.owasp.org/events

Volunteer Job Listings

As a community driven, volunteer effort the project is always looking for people to contribute their skill and expertise. Where we have specific needs we have created volunteer job listing to help volunteers understand the communities’ needs and commitments. If you know someone or want to contribute yourself check out these needs.

Working Group: Outreach
Newsletter & Social Media Marketing Lead (Volunteer)
The Newsletter & Social Media Marketing Lead will manage the OWASP Gen AI Security Project’s newsletters and social media channels, creating engaging content to grow community awareness. Responsibilities include content creation, scheduling, and engagement across platforms, collaborating with the Outreach & Marketing Committee to drive outreach efforts and promote AI.

Location: Remote, anywhere in the world

Working Group: Outreach
Virtual and Physical Events Lead (Volunteer)

The Marketing Events Lead will coordinate virtual and in-person events for the OWASP Gen AI Security Project, ensuring seamless planning, promotion, and execution. Responsibilities include event logistics, speaker coordination, and community engagement, working with the Outreach & Marketing Committee to enhance participation and awareness in AI security discussions worldwide.

Location: Remote, anywhere in the world

Keep track of future volunteer jobs on Volunteer Jobs Page on our website.

1