All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

OWASP Agent Memory Guard: Open-source runtime defense against AI agent memory poisoning attacks

By

Mirko Zorz

2h ago· 4 min readenNews
Bagel score 85 of 100
85/100
Golden Brown
Bagelometer

Crackling crust, pillowy middle. The kind of bagel that earns a second cup of coffee.

Score85TypenewsSentimentneutral

Summary

OWASP's Agent Memory Guard is an open-source runtime defense layer that protects AI agents from memory-based attacks. It sits between an agent and its memory store, screening every read and write through a pipeline of detectors. The tool addresses a critical vulnerability where attackers can plant malicious text in an agent's persistent memory (conversation history, vector stores, scratchpads, RAG indexes) to override instructions, extract user data, or manipulate future tool calls. The defense achieves 92.5% recall at just 59µs latency, making it practical for real-time use.

Key quotes

· 3 pulled
An attacker who plants text in the wrong field can override an agent's instructions, pull out user data, or steer future tool calls, and the effect survives across sessions because the memory does.
Agent Memory Guard is an open-source runtime defense layer that sits between an agent and its memory store, screening every read and write through a pipeline of detectors.
The tool achieves 92.5% recall at just 59µs latency, making it practical for real-time use.
Snippet from the RSS feed
AI agent memory security gets a runtime layer: OWASP's Agent Memory Guard screens every write, hitting 92.5% recall at 59µs latency.

You might also wanna read

GitHub Bans Security Researcher Over Windows Zero-Day Exploit Code in YellowKey Dispute

Security researcher Nightmare-Eclipse reportedly lost his GitHub account after posting Windows zero-day exploit code related to the YellowKe

winbuzzer.com·5h ago

Suspicious hidden message discovered in jqwik testing library 1.10.0

A developer reports discovering a suspicious string in the jqwik testing library (version 1.10.0) that appears during Maven test runs. The s

github.com·8h ago

Critical Gogs RCE bug (CVSS 9.4) remains unpatched; exploit module now public

A critical remote code execution (RCE) vulnerability rated 9.4/10 has been discovered in Gogs, a popular open-source self-hosted Git service

theregister.com·12h ago

How a botnet abused my open source project's cloud version to phish 14,000 people

The author, who runs an open source project management tool called Kaneo, discovered that a botnet had abused the hosted cloud version of th

andrej.sh·3d ago

AI security audit of FreeBSD kernel reveals 15 bugs including RCEs and a hypervisor escape

An AI audit of FreeBSD uncovered 15 kernel bugs, including 3 remote code execution vulnerabilities, 5 local privilege escalation flaws, and

blog.calif.io·3d ago

Microsoft bans security researcher from GitHub after zero-day exploit posts; researcher threatens retaliation

A security researcher known as Nightmare-Eclipse (Chaotic Eclipse) has been banned from Microsoft's GitHub platform after allegedly posting

tomshardware.com·3d ago