Saturday, May 17, 2025

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library

Home
Security Creators Network
Webinars
Events
- Upcoming Events
- On-Demand Events
Sponsored Content
Chat
Library
Related Sites
Media Kit
About
Sponsor

Analytics
AppSec
CISO
Cloud
DevOps
GRC
Identity
Incident Response
IoT / ICS
Threats / Breaches
More
Humor

defense department

DoD HQ, “The Pentagon”

DoD Email Breach: Pentagon Tells Victims 12 Months Late

Richi Jennings | February 16, 2024 | Anurag Sen, azure, Azure cloud, Azure Government Cloud, Compliance Automation Platform for FedRAMP, data privacy PII, defense department, Department of Defense, devops in government, DevSecOps in Government, digital government, DoD, email, Federal Government, Federal Government Bids, FedRAMP, fedramp accreditation;, fedramp ato, fedramp certification, fedramp compliance, government, Microsoft Azure, Microsoft Azure Security, Microsoft Exchange, Microsoft Exchange Server, pentagon, pii, PII Leakage, SB Blogwatch, U.S. Department of Defense, United States Department of Defense, US DOD, USDoD, USSOCOM

3TB Email FAIL: Personal info of tens of thousands leaks. Microsoft cloud email server was missing a password ...

Security Boulevard

Three toy soldiers in action

Data Brokers Sell Sensitive Data of US Military and Veterans

Richi Jennings | November 9, 2023 | Data Broker, Data Brokers, defense department, Department of Defense, How Data Brokers Get Your Information, Justin Sherman, military, military personnel, Military Security, national security, SB Blogwatch, U.S. Department of Defense, U.S. military, United States Department of Defense, US Military

Follow the Money: Foreign buyers welcome. No questions asked. 12¢ per ...

Security Boulevard

DoD HQ, “The Pentagon”

OPSEC FAIL: US Military Email Going to Mali — via Typo

Richi Jennings | July 17, 2023 | defense department, Department of Defense, DoD, E-mail, email, Johannes Zuurbier, Mali, military, Military Communications, mxrecords, pentagon, Russia, SB Blogwatch, U.S. Department of Defense, U.S. military, United States Department of Defense, US DOD, US Military

MX Mixup: Russian-allied government can intercept “highly sensitive information”—because there’s no “I” in .ML ...

Security Boulevard

Surprise! US DoD Server Had no Password — 3TB of Sensitive Data Leaked

Surprise! US DoD Server Had no Password — 3TB of Sensitive Data Leaked

Richi Jennings | February 22, 2023 | azure, Azure cloud, Azure Government Cloud, defense department, Department of Defense, DoD, email, Microsoft, Microsoft Azure, Microsoft Azure Security, pentagon, SB Blogwatch, U.S. Department of Defense, United States Department of Defense, US DOD, USSOCOM

Sensitive military data found on unprotected Microsoft Azure server. Defense Department email store left insecure for at least 11 days ...

Security Boulevard

GAO Finds Gaps in DoD Cyberdefenses, Highlights Importance of Breach and Attack Simulation Tools

Stacey Meyer | February 8, 2021 | Accountability, Blog, Congress, cyberdefense, Cybersecurity, defense department, GAO, government, national security

AttackIQ’s Security Optimization Platform gives an agency a proactive—rather than a reactive—security posture. It enables continuous validation of security controls to definitively establish the effectiveness of key initiatives, to include zero-trust controls ...

Blog – AttackIQ

Techstrong TV

Click full-screen to enable volume control

Watch latest episodes and shows

Upcoming Webinars

Software Supply Chain Security: Navigating NIST, CRA, and FDA Regulations

Is DevEx the Same as DevSecOps?

Podcast

Listen to all of our podcasts

Press Releases

GoPlus's Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

Subscribe to our Newsletters

Most Read on the Boulevard

GenAI’s New Attack Surface: Why MCP Agents Demand a Rethink in Cybersecurity Strategy

Encrypt AI, Protect Your IP: DataKrypto Tackles the LLM Security Crisis While Redefining What Encryption Should Be

Firewall Rule Bloat: The Problem and How AI can Solve it

Security Gamechangers: CrowdStrike’s AI-Native SOC & Next Gen SIEM Take Center Stage at RSAC 2025

Cybersecurity’s Early Warning System: How Live Network Traffic Analysis Detects The ‘Shock Wave’ Before the Breach ‘Tsunami’

News Alert: INE Security outlines top 5 training priorities emerging from RSAC 2025

0-Click NTLM Auth Bypass Exposes Legacy Microsoft Systems

Microsoft’s May 2025 Patch Tuesday Addresses 71 CVEs (CVE-2025-32701, CVE-2025-32706, CVE-2025-30400)

The Security Gap JPMorgan Chase’s CISO Didn’t Mention — And Why It’s in Your Browser

India-Pakistan Conflicts Escalating: Military Operations and DDoS Attacks Making Targeted Strikes

Industry Spotlight

Cloud Security Cybersecurity Data Privacy Data Security Featured Identity & Access Industry Spotlight Network Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches

Coinbase Says Breach May Cost $400 Million, Issues $20 Million Bounty

May 16, 2025 Jeffrey Burt | Yesterday 0

Analytics & Intelligence Cloud Security Cybersecurity Data Privacy Data Security DevOps Endpoint Featured Governance, Risk & Compliance Humor Identity & Access Incident Response Industry Spotlight Malware Mobile Security Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Social Engineering Spotlight Threat Intelligence Threats & Breaches Vulnerabilities

Warning to US Retail: ‘Scattered Spider’ Targets YOU (with DragonForce Ransomware)

May 15, 2025 Richi Jennings | 1 day ago 0

Application Security Cloud Security Cyberlaw Cybersecurity Data Privacy Data Security DevOps Endpoint Featured Governance, Risk & Compliance Humor Identity & Access Industry Spotlight IoT & ICS Security Mobile Security Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches Vulnerabilities

As US CVE Database Fumbles, EU ‘Replacement’ Goes Live

May 14, 2025 Richi Jennings | 2 days ago 0

Top Stories

Cybersecurity Featured News Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight

Linux Foundation Shares Framework for Building Effective Cybersecurity Teams

May 16, 2025 Michael Vizard | Yesterday 0

Cyberlaw Cybersecurity Featured Governance, Risk & Compliance Network Security News Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight

DHS Cancels $2.4 Billion Leidos Contract, Cites Changes at CISA

May 15, 2025 Jeffrey Burt | 1 day ago 0

Cloud Security Cyberlaw Cybersecurity Data Privacy Data Security Featured Governance, Risk & Compliance Mobile Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight

Apple Device Users Can File Claims in $95 Million Siri Spying Settlement

May 13, 2025 Jeffrey Burt | 3 days ago 0

Download Free eBook

Managing the AppSec Toolstack

Join the Community

Add your blog to Security Creators Network
Write for Security Boulevard
Bloggers Meetup and Awards
Ask a Question
Email: [email protected]

Useful Links

About
Media Kit
Sponsor Info
Copyright
TOS
DMCA Compliance Statement
Privacy Policy

Related Sites

Techstrong Group
Cloud Native Now
DevOps.com
Digital CxO
Techstrong Research
Techstrong TV
Techstrong.tv Podcast
DevOps Chat
DevOps Dozen
DevOps TV

Powered by Techstrong Group

Copyright © 2025 Techstrong Group Inc. All rights reserved.

Security in AI

Step 1 of 7

14%

How would you best describe your organization's current stage of securing the use of generative AI in your applications?(Required)

We don’t have or use generative AI in our applications

Nothing significant yet - We have or will have generative AI in our applications but haven’t yet researched or explored the possibility of securing it.

Starting - We have begun to work on securing generative AI in our applications.

Developing - We have started to implement some security measures for generative AI.

Average - We have some policies or tools in place.

Advanced - We have some enhanced security protocols specifically tailored for generative AI in our applications.

Very advanced - We have comprehensive, mature, and proactive security solutions for generative AI in our applications.

Have you implemented, or are you planning to implement, zero trust security for the AI your organization uses or develops?(Required)

Already implemented

Planning to implement

Considering or scoping to implement

Not considering zero trust for AI

Do not use zero trust at all

Don’t know

What are the three biggest challenges your organization faces when integrating generative AI into applications or workflows? (Select up to three)(Required)

Access security

Cost to implement

Security of prompts or responses

Potential impacts on performance or scalability of the applications

Compliance with standards and regulations

Data security or privacy

Integration capabilities of current systems

Potential impacts on performance or scalability of the AI

Lack of expertise or experience

Intellectual property protection

How does your organization secure proprietary information used in AI training, tuning, or retrieval-augmented generation (RAG)? (Select all that apply)(Required)

Encryption at rest

Encryption in transit

Data access control, monitoring

Data anonymization

Data/information isolation

Data masking/tokenization

Data governance policies

Zero trust / continuous authentication and authorization

No specific measures in place

Which of the following kinds of tools are you currently using to secure your organization’s use of generative AI? (select all that apply)(Required)

Native cloud service tools (AWS Guardrails, e.g.)

Third-party tools

Custom in-house tools

No specific tools

How valuable do you think it would it be to have a solution that classifies and quantifies risks associated with generative AI tools?(Required)

Extremely valuable

Very valuable

Somewhat valuable

Not valuable

What are, or do you think would be, the most important reasons for implementing generative AI security measures? (Select up to three)(Required)

Regulatory compliance

Protecting intellectual property

Mitigating potential data breaches

Maintaining customer trust

Competitive advantage

Improved risk management

Increased operational efficiency

Don’t know

Δ