Cybersecurity × AI

Notes on AI, security, and what's coming next.

Independent writing from a cybersecurity practitioner learning AI in the open. Honest takes on AI risk, agents, MCP security, and the tools we're all figuring out together.

Field Notes

5 articles · updated may 2026
Learning Claude

Claude Security for Organizations: A Practical Hardening Guide

Least privilege, monitor everything, isolate what you can, put humans in the loop. A settings-level walkthrough across Claude.ai, Desktop, Code, Cowork, Chrome, Connectors, Extensions, and Plugins — with the rationale behind each call.

May 2026 · 12 min read Read →
AI Security

Shadow AI: how note-taking apps are leaking company secrets

Employees are signing up for free AI note-takers, pasting in client lists, credentials and strategy decks — and feeding it all to someone else's training pipeline. This is the new face of Shadow IT, and most security teams aren't measuring it yet.

May 2026 · 5 min read Read →
AI Security

The Hidden Risks of MCP

Model Context Protocol is transforming how AI connects to your infrastructure — and creating an attack surface most organizations aren't prepared for. A briefing for CISOs, security architects, and AppSec teams.

May 2026 · 8 min read Read →
Learning AI

The agentic AI revolution: what it means right now

We're no longer just using AI to generate text. Autonomous agents that think, plan, and execute are here — reshaping security, software, and careers. Notes from my deep-dive.

Mar 2026 · 6 min read Read →
Learning Claude

Learning Claude — capabilities, connectors & the ecosystem

A practitioner's notes on what Claude can actually do — from the API and MCP connectors to the broader Anthropic ecosystem, and where security professionals should pay close attention.

Apr 2026 · 7 min read Read →

Topics

what this blog covers

AI security & risk

Threat models, attack surfaces, and security practices for AI systems — MCP exploits, prompt injection, model poisoning, agentic AI risks, and what CISOs need to know.

Learning AI

Practical notes from learning AI hands-on — agentic frameworks, local LLMs, automation tools, and how AI is reshaping how we work, build, and ship.

Learning Claude

Exploring Anthropic's Claude — capabilities, the API, MCP connectors, and building with Claude. Written from a security practitioner's perspective.

About

Security by day. AI curious always.

I'm Ravi Ahir — a cybersecurity professional with a growing obsession with how AI is reshaping the security landscape. This blog is where I think out loud: processing what I'm learning, documenting risks I see, and sharing perspectives I hope are useful to other practitioners.

I write about AI security and risk because most existing material is either too technical or too shallow. I'm trying to find the middle ground — clear enough for a CISO, honest enough to be useful to a security architect.

No sponsored posts. No hype. Just notes from someone genuinely figuring this out.

The ideas are mine. AI helps me find the words.

LinkedIn GitHub Email