Tuesday, May 27, 2025

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library

Home
Security Creators Network
Webinars
Events
- Upcoming Events
- On-Demand Events
Sponsored Content
Chat
Library
Related Sites
Media Kit
About
Sponsor

Analytics
AppSec
CISO
Cloud
DevOps
GRC
Identity
Incident Response
IoT / ICS
Threats / Breaches
More
Humor

Richi Jennings

Richi Jennings is a foolish independent industry analyst, editor, and content strategist. A former developer and marketer, he’s also written or edited for Computerworld, Microsoft, Cisco, Micro Focus, HashiCorp, Ferris Research, Osterman Research, Orthogonal Thinking, Native Trust, Elgan Media, Petri, Cyren, Agari, Webroot, HP, HPE, NetApp on Forbes and CIO.com. Bizarrely, his ridiculous work has even won awards from the American Society of Business Publication Editors, ABM/Jesse H. Neal, and B2B Magazine.

Seth Larson

AI Slop is Hurting Security — LLMs are Dumb and People are Dim

Richi Jennings | December 12, 2024 | AI, AI (Artificial Intelligence), AI hallucination, AI Misinformation generative AI, artifical intelligence, Artifical Stupidity, Artificial Artificiality, Artificial Intelligence, Artificial Intelligence (AI), Artificial Intelligence (AI)/Machine Learning (ML), Artificial Intelligence Cybersecurity, artificial intelligence in cybersecurity, artificial intelligence in security, artificial intellignece, Artificial Stupidity, CVE, CVE (Common Vulnerabilities and Exposures), cybersecurity risks of generative ai, Gen AI, GenAI, genai-for-security, generative AI, generative ai gen ai, Generative AI risks, generative artificial intelligence, Large Language Model, large language models, Large Language Models (LLM), Large language models (LLMs), LLM, LLM Platform Abuse, llm security, SB Blogwatch, Seth Larson

Artificial stupidity: Large language models are terrible if you need reasoning or actual understanding ... Read More

Security Boulevard

A black OpenWrt hoodie

Critical OpenWrt Bug: Update Your Gear!

Richi Jennings | December 10, 2024 | Automatic Update, automatic updates, CVE-2024-54143, IoT firmware, Malicious Firmware Updates, OpenWrt, python, RyotaK, SB Blogwatch

ASU 48-bit trash hash: Open source router firmware project fixes dusty old code ... Read More

Security Boulevard

Vladimir Vladimirovich Putin (or possibly a very good lookalike)

Stoli Vodka: Bankrupt After Ransomware Attack

Richi Jennings | December 6, 2024 | Bankruptcy, Chris Caldwell, cyber attacks russia, Cybergoonery, Latvia, Party Like a Russian, Putin, Ransomware, Russia, russia hacker, russia-based, SB Blogwatch, Stoli, Vladimir Putin, Yuri Shefler

Absolutely un-fabulous: Smells like Russia is responsible, but reality is a bit more complicated ... Read More

Security Boulevard

Jeff Greene, CISA executive assistant director for cybersecurity

China is Still Inside US Networks — It’s Been SIX Months

Richi Jennings | December 4, 2024 | china, china espionage, China-linked Hackers, China-nexus cyber attacks, China-nexus cyber espionage, Chinese, Chinese cyber espionage, chinese hacker, Chinese hackers, Chinese Hacking Groups, Chinese state-sponsored cyberattacks, cisa, Crypto, cryptography, Data encryption, Data Stolen By China, E2EE, Earth Estries, email encryption, encryption, end-to-end encryption, FamousSparrow, FBI, Ghost Emperor, ISPs, Jeff Greene, nsa, Peoples Republic of China, Salt Typhoon, Salt Typhoon cyberattack, SB Blogwatch, Telecom Networks, UNC2286

Hell froze over: FBI and NSA recommend you use strong encryption ... Read More

Security Boulevard

Three tiny people cleaning the inside of a hard drive

QNAP’s Buggy Security Fix Causes Chaos

Richi Jennings | November 26, 2024 | automatic updates, data storage, firmware, firmware patch, firmware security, firmware update, Firmware Updates, hard disk drive, hard drive, NAS, os security updates, QNAP, QTS, RAID, Release Management, SB Blogwatch, security update, storage

RAID FAIL: NAS Maker does a CrowdStrike—cleanup on /dev/dsk/c1t2d3s4 please ... Read More

Security Boulevard

A D-Link DSR-250N, which is now EOL

Here’s Yet Another D-Link RCE That Won’t be Fixed

Richi Jennings | November 21, 2024 | D-Link, D-Link Corporation, D-Link vulnerability, D-Link zero day, Internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, iot, SB Blogwatch

D-Licious: Stubborn network device maker digs in heels and tells you to buy new gear ... Read More

Security Boulevard

David “dwizzzle” Weston

Microsoft Veeps Ignite Fire Under CrowdStrike

Richi Jennings | November 20, 2024 | CrowdStrike, CrowdStrike Falcon, CrowdStrike incident;, crowdstrike updates, David Weston, ignite, Microsoft, Microsoft security, Microsoft Virus Initiative, Microsoft Windows, Quick Machine Recovery, rust, Safe Deployment Practices, SB Blogwatch, Windows, Windows security

BSODs begone! Redmond business leaders line up to say what’s new in Windows security ... Read More

Security Boulevard

xkcd.com/327 — “Exploits of a Mom”

These 20 D-Link Devices Have Critical RCE Bug — but NO Patch NEVER

Richi Jennings | November 13, 2024 | CVE-2024-10914, D-Link, D-Link Corporation, D-Link NAS Devices, D-Link vulnerability, D-Link zero day, Internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, iot, NAS, network storage device, SB Blogwatch

‘Bobby’ flaw flagged WONTFIX: Company doesn’t make storage devices now; has zero interest in fixing this catastrophic vulnerability ... Read More

Security Boulevard

Baguettes

Schneider Electric Confirms Ransom Hack — Hellcat Demands French Bread as ‘Joke’

Richi Jennings | November 6, 2024 | Baguette, BGTT, Crypto, crypto crime, crypto currency, cryptocoin, Cryptocrurrency, cryptocurrencies, cryptocurrency, Cryptocurrency Humor, grep, greppy, Hellcat, ICA, International Contract Agency, Ransomware, SB Blogwatch

That’s a lot of pain: $125,000 ransom seems small—but why do the scrotes want it paid in baguettes? ... Read More

Security Boulevard

Canadian “mounties” marching down the street

Ô! China Hacks Canada too, Says CCCS

Richi Jennings | November 1, 2024 | canada, Canadian Centre for Cyber Security, Canadian Government, china, china espionage, China-linked Hackers, China-nexus cyber attacks, China-nexus cyber espionage, Chinese, Chinese Communists, Chinese cyber espionage, chinese government, chinese hacker, Chinese hackers, Chinese Hacking Groups, Chinese Intelligence, Chinese state-sponsored cyberattacks, National Cyber Threat Assessment, Peoples Republic of China, SB Blogwatch

Plus brillants exploits: Canadian Centre for Cyber Security fingers Chinese state sponsored hackers ... Read More

Security Boulevard

‹
1
2
3
4
5
6
…
71
›

Techstrong TV

Click full-screen to enable volume control

Watch latest episodes and shows

Tech Field Day Experience at Qlik Connect 2025

Upcoming Webinars

Software Supply Chain Security: Navigating NIST, CRA, and FDA Regulations

Podcast

Listen to all of our podcasts

Press Releases

GoPlus's Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

Subscribe to our Newsletters

Most Read on the Boulevard

Survey Surfaces Limited Amount of Post Quantum Cryptography Progress

U.S. Authorities Seize DanaBot Malware Operation, Indict 16

Understanding the Importance of Incident Response Plans for Nonprofits

RSA and Bitcoin at BIG Risk from Quantum Compute

Unsophisticated Actors, Poor Hygiene Prompt CI Alert for Oil & Gas

Malicious attack method on hosted ML models now targets PyPI

Cyber Heads Up: “BadSuccessor”—A Critical Active Directory Privilege Escalation Vulnerability in Windows Server 2025

Ensuring Stability with Robust NHI Strategies

Feel Protected: Advances in NHI Security Techniques

When AI Fights Back: Threats, Ethics, and Safety Concerns

Industry Spotlight

Analytics & Intelligence Blockchain CISO Suite Cloud Security Cybersecurity Data Privacy Data Security DevOps Digital Currency Featured Governance, Risk & Compliance Humor Industry Spotlight Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threat Intelligence Threats & Breaches Vulnerabilities

RSA and Bitcoin at BIG Risk from Quantum Compute

May 27, 2025 Richi Jennings | 5 hours ago 0

Application Security Cyberlaw Cybersecurity Data Privacy Endpoint Featured Governance, Risk & Compliance Humor Incident Response Industry Spotlight Most Read This Week News Popular Post Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches Vulnerabilities

Signal Gives Microsoft a Clear Signal: Do NOT Recall This

May 22, 2025 Richi Jennings | May 22 0

Cloud Security Cybersecurity Data Privacy Data Security Featured Identity & Access Industry Spotlight Network Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches

Coinbase Says Breach May Cost $400 Million, Issues $20 Million Bounty

May 16, 2025 Jeffrey Burt | May 16 0

Top Stories

Cloud Security Cybersecurity Data Privacy Data Security Endpoint Featured Identity & Access Malware Network Security News Security Boulevard (Original) Spotlight Threats & Breaches

U.S. Authorities Seize DanaBot Malware Operation, Indict 16

May 23, 2025 Jeffrey Burt | 4 days ago 0

Cybersecurity Featured News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight

Survey Surfaces Limited Amount of Post Quantum Cryptography Progress

May 23, 2025 Michael Vizard | 4 days ago 0

Cloud Security Cybersecurity Data Privacy Data Security Featured Identity & Access Malware Mobile Security Network Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Social Engineering Spotlight Threat Intelligence

Law Enforcement, Microsoft Disrupt Operations of Popular Lumma Stealer

May 22, 2025 Jeffrey Burt | May 22 0

Download Free eBook

The Dangers of Open Source Software and Best Practices for Securing Code

Join the Community

Add your blog to Security Creators Network
Write for Security Boulevard
Bloggers Meetup and Awards
Ask a Question
Email: [email protected]

Useful Links

About
Media Kit
Sponsor Info
Copyright
TOS
DMCA Compliance Statement
Privacy Policy

Related Sites

Techstrong Group
Cloud Native Now
DevOps.com
Digital CxO
Techstrong Research
Techstrong TV
Techstrong.tv Podcast
DevOps Chat
DevOps Dozen
DevOps TV

Powered by Techstrong Group

Copyright © 2025 Techstrong Group Inc. All rights reserved.

Security in AI

Step 1 of 7

14%

How would you best describe your organization's current stage of securing the use of generative AI in your applications?(Required)

We don’t have or use generative AI in our applications

Nothing significant yet - We have or will have generative AI in our applications but haven’t yet researched or explored the possibility of securing it.

Starting - We have begun to work on securing generative AI in our applications.

Developing - We have started to implement some security measures for generative AI.

Average - We have some policies or tools in place.

Advanced - We have some enhanced security protocols specifically tailored for generative AI in our applications.

Very advanced - We have comprehensive, mature, and proactive security solutions for generative AI in our applications.

Have you implemented, or are you planning to implement, zero trust security for the AI your organization uses or develops?(Required)

Already implemented

Planning to implement

Considering or scoping to implement

Not considering zero trust for AI

Do not use zero trust at all

Don’t know

What are the three biggest challenges your organization faces when integrating generative AI into applications or workflows? (Select up to three)(Required)

Compliance with standards and regulations

Data security or privacy

Integration capabilities of current systems

Potential impacts on performance or scalability of the applications

Intellectual property protection

Lack of expertise or experience

Security of prompts or responses

Access security

Cost to implement

Potential impacts on performance or scalability of the AI

How does your organization secure proprietary information used in AI training, tuning, or retrieval-augmented generation (RAG)? (Select all that apply)(Required)

Encryption at rest

Encryption in transit

Data access control, monitoring

Data anonymization

Data/information isolation

Data masking/tokenization

Data governance policies

Zero trust / continuous authentication and authorization

No specific measures in place

Which of the following kinds of tools are you currently using to secure your organization’s use of generative AI? (select all that apply)(Required)

Native cloud service tools (AWS Guardrails, e.g.)

Third-party tools

Custom in-house tools

No specific tools

How valuable do you think it would it be to have a solution that classifies and quantifies risks associated with generative AI tools?(Required)

Extremely valuable

Very valuable

Somewhat valuable

Not valuable

What are, or do you think would be, the most important reasons for implementing generative AI security measures? (Select up to three)(Required)

Regulatory compliance

Protecting intellectual property

Mitigating potential data breaches

Maintaining customer trust

Competitive advantage

Improved risk management

Increased operational efficiency

Don’t know

Δ