OWASP issues GenAI data‑security guide

OWASP published the "GenAI Data Security Risks and Mitigations for 2026" guide as part of its GenAI Security Project on genai.owasp.org. (genai.owasp.org) A v1.0 copy of the guide is distributed in public repositories (file name: OWASP-GenAI-Data-Security-Risks-and-Mitigations-2026-v1.0.pdf, ~1.14 MB). (github.com) OWASP explicitly links the data guide to its GenAI Red Teaming Initiative, which defines maturity‑tiered red‑teaming tasks and data‑focused testing for prompt injection, model extraction, dataset poisoning and output‑handling scenarios. (genai.owasp.org) The 2026 data guide complements earlier OWASP releases — including the OWASP Top 10 for Agentic Applications published in December 2025 — forming a connected set of Top‑10, red‑teaming and mitigation resources. (genai.owasp.org) OWASP announced expanded sponsor support and promoted the GenAI Security Project and its new solution‑landscape resources ahead of RSA Conference 2026, with multiple press outlets covering the project’s expanded guidance and events. (prnewswire.com) Third‑party research and tools that OWASP’s red‑teaming guidance points to — for example, prompt‑fuzzing research from Unit 42 and interactive prompt‑fuzzer tooling — are already being cited by vendors and security teams as practical tests to add to CI/CD and pre‑deployment validation pipelines. (unit42.paloaltonetworks.com)