Wednesday, May 21, 2025

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library

Home
Security Creators Network
Webinars
Events
- Upcoming Events
- On-Demand Events
Sponsored Content
Chat
Library
Related Sites
Media Kit
About
Sponsor

Analytics
AppSec
CISO
Cloud
DevOps
GRC
Identity
Incident Response
IoT / ICS
Threats / Breaches
More
Humor

Richi Jennings

Richi Jennings is a foolish independent industry analyst, editor, and content strategist. A former developer and marketer, he’s also written or edited for Computerworld, Microsoft, Cisco, Micro Focus, HashiCorp, Ferris Research, Osterman Research, Orthogonal Thinking, Native Trust, Elgan Media, Petri, Cyren, Agari, Webroot, HP, HPE, NetApp on Forbes and CIO.com. Bizarrely, his ridiculous work has even won awards from the American Society of Business Publication Editors, ABM/Jesse H. Neal, and B2B Magazine.

Offer Shlomi a/k/a Vince Offer, the Slap Chop guy

SLAP/FLOP: Apple Silicon’s ‘Son of Spectre’ Critical Flaws

Richi Jennings | January 29, 2025 | Apple, apple bug, Apple Data Security, Apple Silicon, ARM, Arm CPU Attack, arm64, Daniel Genkin, FLOP, iPad, iPhone, Jalen Chuang, Jason Kim, Mac, SB Blogwatch, Side-Channel, side-channel attack, side-channel attacks, SLAP, Spectre, Spectre attack, Spectre variant, speculative execution, Yuval Yarom

Watch this: Want more “speculative execution” bugs? You’re gonna be in a great mood all day ... Read More

Security Boulevard

enemies, CISA, security,trump, states, infrastructure, PCLOB, president, Donald John Trump, President of the U.S.

Trump U-Turn: TikTok’s On-Again/Off-Again U.S. Ban

Richi Jennings | January 21, 2025 | Bytedance, children, Children and smartphones, china, chinese government, disinformation, Donald Trump, Misinformation, online disinformation, President Donald Trump, president trump, Privacy, Protecting Americans from Foreign Adversary Controlled Applications Act, SB Blogwatch, Social disinformation, social media, socialmedia, spyware, TikTok, TikTok Ban, Trump, Won’t somebody think of the children?

Not For You: “Protecting Americans from Foreign Adversary Controlled Applications Act” shouldn’t be enforced, orders President Trump ... Read More

Security Boulevard

Outgoing U.S. President, Joseph Robinette Biden Jr.

This is HUGE: Biden’s Cybersecurity Exec. Order — Big Parting Gift to Trump

Richi Jennings | January 17, 2025 | Biden, Biden administration, Biden National Cybersecurity Strategy, Biden-Harris, china, China-linked Hackers, China-nexus cyber attacks, executive order cybersecurity, executive order on cybersecurity, Federal Government, Joe Biden, Peoples Republic of China, President Biden, president cybersecurity executive order, presidential executive order cybersecurity, SB Blogwatch, US Federal Government, White House, white house executive order cybersecurity framework

Wow. Just Wow: Joseph Robinette Biden Jr. hits the emergency “do something” button ... Read More

Security Boulevard

DonkeyHotey (cc:by-sa)

Allstate Violates Drivers’ Privacy, Texas AG Alleges

Richi Jennings | January 15, 2025 | Allstate, android spyware, Arity, automaker, Car, cars, cellular IoT, cellular IoT security, Chrysler, Connected Cars, Consumer IoT, Dodge, Fiat, Fuel Rewards, GasBuddy, insurance, Insurance Companies, insurance company, Internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, iOS spyware, iot, Jeep, Lexus, Life360, Maserati, Mazda, Mozilla, Mozilla Foundation, New Cars, Privacy, Privacy4Cars, ram, Routely, SB Blogwatch, spyware, Stellantis, Texas Data Privacy and Security Act, Toyota, vehicle, vehicle cybersecurity, vehicle OTAs

Don’t Mess With Texas Privacy: “We will hold all these companies accountable,” rants state attorney general Ken Paxton (pictured) ... Read More

Security Boulevard

Icebergs in Jökulsárlón, Iceland

Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks

Richi Jennings | January 8, 2025 | biomedical, biomedical devices, commercial iot security, DNA, DNA Data, Family Tree DNA, Hackable Medical Devices, industrial internet of things, Internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, internetof things, internetofthings, internte-of-things, Intranet of Things, iot, medical, medical data, medical device, medical device security, Medical Devices, Medical devices cyber security, medical equipment, Ransomware, Ransomware of Things, SB Blogwatch, secure boot

IEI-IEI, Oh: Running an obsolete OS, on obsolete hardware, configured with obsolete settings ... Read More

Security Boulevard

Row upon row of unsold vehicles

Best of 2024: 30,000 Dealerships Down — ‘Ransomware’ Outage Outrage no. 2 at CDK Global

Richi Jennings | December 30, 2024 | Automotive, Automotive industry, Car Dealer, CDK Global, cloud outage, cloud Saas, Downtime and outages, outage, outages, Private Equity, Ransomware, SaaS, SaaS App Security, SB Blogwatch, Software-as-a-Service, Software-as-a-Service (SaaS)

Spend more on security! Car and truck dealers fall back on pen and paper as huge SaaS provider gets hacked (again) ... Read More

Security Boulevard

VW Cars Leak Private Data of 800,000 — ‘Volksdaten’

VW Cars Leak Private Data of 800,000 — ‘Volksdaten’

Richi Jennings | December 30, 2024 | Cariad, CCC, Chaos Computer Club, connected car security, Connected Cars, connected vehicle, Connected Vehicles, connected-car, electric vehicle, electric vehicle security, electric vehicles, motor vehicle, SB Blogwatch, software-defined vehicles, vehicle, vehicle cybersecurity, Volksdaten, Volkswagen

Cariad, VW Group’s software arm, made this classic error ... Read More

Security Boulevard

Best of 2024: AT&T Says 110M Customers’ Data Leaked — Yep, it’s Snowflake Again

Richi Jennings | December 27, 2024 | 2 factor auth, 2-factor authentication, 2fa, ATT, Cloud MFA, Data leak, DUAL FACTOR AUTHENTICATION, MFA, mult-factor authentication, multi-factor authenication, Multi-Factor Authentication, Multi-Factor Authentication (MFA), Multifactor Authentication, NYSE:SNOW, NYSE:T, Privacy, SB Blogwatch, ShinyHunters, snowflake, threats, two factor authentication, UNC5537

Should’ve used MFA: $T loses yet more customer data—this time, from almost all of them ... Read More

Security Boulevard

Seth Larson

AI Slop is Hurting Security — LLMs are Dumb and People are Dim

Richi Jennings | December 12, 2024 | AI, AI (Artificial Intelligence), AI hallucination, AI Misinformation generative AI, artifical intelligence, Artifical Stupidity, Artificial Artificiality, Artificial Intelligence, Artificial Intelligence (AI), Artificial Intelligence (AI)/Machine Learning (ML), Artificial Intelligence Cybersecurity, artificial intelligence in cybersecurity, artificial intelligence in security, artificial intellignece, Artificial Stupidity, CVE, CVE (Common Vulnerabilities and Exposures), cybersecurity risks of generative ai, Gen AI, GenAI, genai-for-security, generative AI, generative ai gen ai, Generative AI risks, generative artificial intelligence, Large Language Model, large language models, Large Language Models (LLM), Large language models (LLMs), LLM, LLM Platform Abuse, llm security, SB Blogwatch, Seth Larson

Artificial stupidity: Large language models are terrible if you need reasoning or actual understanding ... Read More

Security Boulevard

A black OpenWrt hoodie

Critical OpenWrt Bug: Update Your Gear!

Richi Jennings | December 10, 2024 | Automatic Update, automatic updates, CVE-2024-54143, IoT firmware, Malicious Firmware Updates, OpenWrt, python, RyotaK, SB Blogwatch

ASU 48-bit trash hash: Open source router firmware project fixes dusty old code ... Read More

Security Boulevard

‹
1
2
3
4
5
…
71
›

Techstrong TV

Click full-screen to enable volume control

Watch latest episodes and shows

Tech Field Day Experience at Qlik Connect 2025

Upcoming Webinars

Software Supply Chain Security: Navigating NIST, CRA, and FDA Regulations

Podcast

Listen to all of our podcasts

Press Releases

GoPlus's Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

Subscribe to our Newsletters

Most Read on the Boulevard

IBM Reasserts Its Identity: A Modern Security Partner Rooted in Experience

Linux Foundation Shares Framework for Building Effective Cybersecurity Teams

Coinbase Says Breach May Cost $400 Million, Issues $20 Million Bounty

Orca Security Acquires Opus to Gain AI Agent Orchestration Technology

EU Stakes Out Digital Sovereignty With Vulnerability Database

The Coinbase Data Breach: A Breakdown of What Went Wrong

Coinbase Hacked and Turns the Tables on the Cybercriminals!

Beware! A threat actor could steal the titles of your private (and draft) WordPress posts!

Connecticut’s Largest Healthcare Provider Gets Breached

BSidesLV24 – GroundFloor – Adversaries Also Lift & Shift: Cloud Threats Through The Eyes Of An Adversary

Industry Spotlight

Cloud Security Cybersecurity Data Privacy Data Security Featured Identity & Access Industry Spotlight Network Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches

Coinbase Says Breach May Cost $400 Million, Issues $20 Million Bounty

May 16, 2025 Jeffrey Burt | 4 days ago 0

Analytics & Intelligence Cloud Security Cybersecurity Data Privacy Data Security DevOps Endpoint Featured Governance, Risk & Compliance Humor Identity & Access Incident Response Industry Spotlight Malware Mobile Security Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Social Engineering Spotlight Threat Intelligence Threats & Breaches Vulnerabilities

Warning to US Retail: ‘Scattered Spider’ Targets YOU (with DragonForce Ransomware)

May 15, 2025 Richi Jennings | May 15 0

Application Security Cloud Security Cyberlaw Cybersecurity Data Privacy Data Security DevOps Endpoint Featured Governance, Risk & Compliance Humor Identity & Access Industry Spotlight IoT & ICS Security Mobile Security Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches Vulnerabilities

As US CVE Database Fumbles, EU ‘Replacement’ Goes Live

May 14, 2025 Richi Jennings | May 14 0

Top Stories

Cybersecurity Featured News Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight

Linux Foundation Shares Framework for Building Effective Cybersecurity Teams

May 16, 2025 Michael Vizard | 4 days ago 0

Cyberlaw Cybersecurity Featured Governance, Risk & Compliance Network Security News Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight

DHS Cancels $2.4 Billion Leidos Contract, Cites Changes at CISA

May 15, 2025 Jeffrey Burt | May 15 0

Cloud Security Cyberlaw Cybersecurity Data Privacy Data Security Featured Governance, Risk & Compliance Mobile Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight

Apple Device Users Can File Claims in $95 Million Siri Spying Settlement

May 13, 2025 Jeffrey Burt | May 13 0

Download Free eBook

The State of Cloud Native Security 2020

Join the Community

Add your blog to Security Creators Network
Write for Security Boulevard
Bloggers Meetup and Awards
Ask a Question
Email: [email protected]

Useful Links

About
Media Kit
Sponsor Info
Copyright
TOS
DMCA Compliance Statement
Privacy Policy

Related Sites

Techstrong Group
Cloud Native Now
DevOps.com
Digital CxO
Techstrong Research
Techstrong TV
Techstrong.tv Podcast
DevOps Chat
DevOps Dozen
DevOps TV

Powered by Techstrong Group

Copyright © 2025 Techstrong Group Inc. All rights reserved.

Security in AI

Step 1 of 7

14%

How would you best describe your organization's current stage of securing the use of generative AI in your applications?(Required)

We don’t have or use generative AI in our applications

Nothing significant yet - We have or will have generative AI in our applications but haven’t yet researched or explored the possibility of securing it.

Starting - We have begun to work on securing generative AI in our applications.

Developing - We have started to implement some security measures for generative AI.

Average - We have some policies or tools in place.

Advanced - We have some enhanced security protocols specifically tailored for generative AI in our applications.

Very advanced - We have comprehensive, mature, and proactive security solutions for generative AI in our applications.

Have you implemented, or are you planning to implement, zero trust security for the AI your organization uses or develops?(Required)

Already implemented

Planning to implement

Considering or scoping to implement

Not considering zero trust for AI

Do not use zero trust at all

Don’t know

What are the three biggest challenges your organization faces when integrating generative AI into applications or workflows? (Select up to three)(Required)

Lack of expertise or experience

Data security or privacy

Access security

Intellectual property protection

Cost to implement

Potential impacts on performance or scalability of the AI

Security of prompts or responses

Compliance with standards and regulations

Potential impacts on performance or scalability of the applications

Integration capabilities of current systems

How does your organization secure proprietary information used in AI training, tuning, or retrieval-augmented generation (RAG)? (Select all that apply)(Required)

Encryption at rest

Encryption in transit

Data access control, monitoring

Data anonymization

Data/information isolation

Data masking/tokenization

Data governance policies

Zero trust / continuous authentication and authorization

No specific measures in place

Which of the following kinds of tools are you currently using to secure your organization’s use of generative AI? (select all that apply)(Required)

Native cloud service tools (AWS Guardrails, e.g.)

Third-party tools

Custom in-house tools

No specific tools

How valuable do you think it would it be to have a solution that classifies and quantifies risks associated with generative AI tools?(Required)

Extremely valuable

Very valuable

Somewhat valuable

Not valuable

What are, or do you think would be, the most important reasons for implementing generative AI security measures? (Select up to three)(Required)

Regulatory compliance

Protecting intellectual property

Mitigating potential data breaches

Maintaining customer trust

Competitive advantage

Improved risk management

Increased operational efficiency

Don’t know

Δ