According to Michael Duffy, an official from the Cybersecurity and Infrastructure Security Agency (CISA), there has been a significant increase in zero-day exploits globally, directly impacting federal government networks. This comes after a decline in such exploits last year. Duffy also mentioned the first instances of ransomware within the federal government and an uptick in DDoS activity.
From reporting in the Washington Post, AI chatbots powered by large language models are vulnerable to prompt injection attacks, where attackers manipulate the chatbot into executing malicious commands. Prompt injection poses a significant risk to the security of AI systems, and researchers have already found examples of successful attacks. Authorities like the Federal Trade Commission and the White House are taking notice and calling for measures to address this vulnerability.
And while I’m talking about AI safety, Labeling AI-generated content is becoming more challenging as AI becomes integrated into our digital tools and lives. Legislators and regulators are pushing for labeling requirements, but as AI and humans collaborate more closely, labeling loses its coherence and meaning. Efforts to distinguish between human and AI work become inadequate when AI is used as a collaborator. The problem extends to image creation and labeling text, where AI plays a significant role. Establishing standards for image metadata may help track how images are created, but the challenge remains for other types of media. I’ve linked to the Axios article diving in here.
Why do we care?
Cyber and AI will be a valuable intersection space, and both sets of skills will be required in providers of the future. Offering services focused on threat intelligence and predictive analytics can also help clients preempt potential breaches, turning the rise in zero-day exploits into a business opportunity for informed MSPs. MSPs should stay informed about regulatory developments regarding AI to guide their clients through compliance with any forthcoming labeling requirements.
Those who invest in understanding and innovating in this space can position themselves as essential partners to businesses navigating the complexities of modern technology, particularly as it pertains to security and compliance.

