https://oobskulden.com/categories/security-audit/Recent content in Security-Audit on Oob SkuldenHugo -- 0.153.2en-usThu, 02 Apr 2026 08:00:00 -0500https://oobskulden.com/2026/04/your-ai-has-a-memory.-anyone-can-read-it.-anyone-can-poison-it./Thu, 02 Apr 2026 08:00:00 -0500https://oobskulden.com/2026/04/your-ai-has-a-memory.-anyone-can-read-it.-anyone-can-poison-it./ChromaDB ships with no authentication. This episode breaks the RAG stack built in 3.4A -- exfiltrating every internal document, poisoning the knowledge base to phish users via the AI, jamming retrieval with blocker documents, and deleting the entire collection. All from the network, with curl and five lines of Python.