Security Boulevard, Monday, June 1st, 2026
No Longer Invisible: When Cyber Attacks Go Physical
Dan Lohrmann warns cyber attacks are shifting from data theft toward physical disruption of critical infrastructure.
more →
Back Issues This Week → Popular →
All issues › Archive
Security Boulevard — Archive
759 articles · page 2 of 16
Security Boulevard, Monday, June 1st, 2026
Authentication vs Authorization: A 2026 Founder's Guide
A founder's guide distinguishing authentication (who you are) from authorization (what you can do) and the costly mistake of conflating them.
more → Security Boulevard, Friday, May 29th, 2026
What GEO Looks Like for Cybersecurity Buyers: CISOs, CIOs, and Security Teams
A CISO evaluating an identity platform does not start with a sales call. They start with a prompt.
more →
Security Boulevard, Friday, May 29th, 2026
The Cost Hidden in Your Recovery Queue
While enterprises typically benchmark helpdesk identity verification tickets at a visible $25 each, the true annual cost balloon past $8 million due to hidden engineering overhead, lost workforce productivity, and severe social engineering breach risks.
more → Security Boulevard, Friday, May 29th, 2026
Infrastructure Costs in SSO Systems: What Teams Often Overlook
Single sign-on systems help organizations simplify user access across multiple platforms and applications. Employees benefit from fewer passwords, while IT teams gain better control over authentication and security policies.
more → Security Boulevard, Friday, May 29th, 2026
How Continuous Scanning Differs from Periodic Pentesting?
Your security testing works on a schedule, and that is how it needs to be. But our no-so-generous opponents do not think the same! Attackers don't work on a schedule.
more → Security Boulevard, Friday, May 29th, 2026
Hacking for Fun, Profit-and Now, Wagers
The next generation of hacking may not be about stealing the money. It may be about creating the event on which the money is wagered.
more → Security Boulevard, Thursday, May 28th, 2026
Four Lessons From a Founder to Build and Scale a Cybersecurity Company That Lasts
In the early stages of building a business, even experienced leaders don't know if they will succeed. Many start with strong ideas, yet 90% of startups fail. Pushing through requires hard work, persistence, and a big leap of faith.
more → Security Boulevard, Thursday, May 28th, 2026
Even Google Says You Cannot Do AI Security On One Platform
Google Cloud's COO states that effective AI security requires platform-independent solutions across multiple clouds and SaaS applications.
more → Security Boulevard, Tuesday, May 26th, 2026
Agentic AI Does Not Mean Abandoning Zero Trust
For the last several years, security leaders have wrestled with a difficult question: how do you embrace AI-driven progress without creating massive new security risks?
more → Security Boulevard, Tuesday, May 26th, 2026
Scammers Pretending to Be Microsoft Had Help from US Executives
US executives pleaded guilty to selling phone numbers and infrastructure to tech support scammers impersonating Microsoft and Apple.
more → Security Boulevard, Monday, May 25th, 2026
The CVE Chase Must Stop
Even before Anthropic's new model was released, it was already clear: AI is shifting the balance of power in cybersecurity in favor of attackers, forcing defenders to rethink a protection paradigm that relies on vulnerability monitoring and patching.
more → Security Boulevard, Monday, May 25th, 2026
Quantum-Resistant Cryptography for AI: A Blueprint for Secure Model Context Protocol Deployments
The Model Context Protocol (MCP) has completely changed the game for agentic AI. It's the connective tissue that lets our agents actually do things. But there's a catch. By making our systems more connected, we've effectively left the back door wide open for long-term data theft.
more → Security Boulevard, Monday, May 25th, 2026
Anonymous Website Visitor Identification: How It Works, Top Tools Compared, and GDPR/CCPA Compliance
Demand Gen Report's 2024 B2B Buyer Behavior survey found 67 percent of B2B purchase decisions are 60% or more complete before the buyer ever contacts sales, which is exactly why marketing teams pay for anonymous-visitor-identification tools, and exactly why the GDPR and CCPA enforcement gaps matter.
more → Security Boulevard, Monday, May 25th, 2026
How Runtime Security Can Turn AI Into an Engine for Innovation
Runtime security enables organizations to safely scale AI agents by monitoring and enforcing controls at machine speed rather than relying on pre-deployment policies.
more → Security Boulevard, Sunday, May 24th, 2026
CISO Diaries: Jason Scanlon on Security Culture, Leadership, and the Human Side of Cybersecurity
After more than 25 years working across IT and cybersecurity, Jason Scanlon has developed a perspective on security that goes far beyond technology stacks and threat dashboards.
more →
Security Boulevard, Saturday, May 16th, 2026
Post-Quantum AI Infrastructure Security: A Complete Guide for 2026
Organizations must implement post-quantum cryptography and zero-trust security for AI infrastructure to defend against future quantum threats and model poisoning attacks.
more →
Security Boulevard, Friday, May 15th, 2026
What is AI penetration testing?
As organisations continue integrating AI capabilities into customer-facing applications, internal tooling, and operational workflows, the security implications of these systems are becoming increasingly important.
more → Security Boulevard, Thursday, May 14th, 2026
Threat Detection and Response Platforms: A Modern Enterprise Guide to Faster, Smarter Cyber Defense
Cyber threats are evolving faster than most organizations can respond. Modern enterprises face an increasingly complex threat landscape driven by ransomware, nation-state attacks, insider threats, cloud misconfigurations, supply chain risks, and AI-assisted cybercrime.
more → Security Boulevard, Thursday, May 14th, 2026
Reducing Authentication Errors in Enterprise Environments: A Human-Centric Approach
Every enterprise trumpets its 'zero-trust' ambitions, yet the help-desk queue still overflows with people who can't get past the login box. One mistyped passphrase or a missed push notification seems trivial, but multiply that by thousands of employees, and you have real revenue bleeding away.
more → Security Boulevard, Thursday, May 14th, 2026
Ransomware, Critical Vulnerabilities, and the Security Gap No One Is Closing Fast Enough
Somewhere between a five-month investigation gap at a Minnesota hospital and 17 million vehicle records sitting on a contractor's FTP server, a familiar story started taking shape again. Attackers didn't need to be particularly sophisticated. They just needed time, a poorly segmented network, and a vendor nobody was watching closely enough.
more → Security Boulevard, Thursday, May 14th, 2026
How to Prevent Data Security Breaches in Your School District
K-12 school districts are increasingly becoming prime targets for data security breaches. As cyber threats grow more sophisticated, schools are often managing large, decentralized networks with limited IT resources. As such, you're likely to face mounting pressure to protect their digital environments.
more → Security Boulevard, Thursday, May 14th, 2026
Cybersecurity Compliance Monitoring: A Complete Guide for Modern Enterprises
This guide provides a comprehensive look at what cybersecurity compliance monitoring is, why it matters, how it works, the frameworks that govern it, and the best practices organizations should follow to build a program that scales with their risk and regulatory exposure.
more → Security Boulevard, Thursday, May 14th, 2026
AI in SOC: How Artificial Intelligence Improves Incident Response
AI and automation improve SOC incident response by organizing case data and guiding analysts through coordinated actions.
more → Security Boulevard, Wednesday, May 13th, 2026
Sweet Security Unfurls AI Agent to Conduct Penetration Testing
Sweet Security, a provider of a cloud security platform, today added an artificial intelligence (AI) agent that makes use of an index of IT environments it maintains to conduct penetration testing.
more → Security Boulevard, Wednesday, May 13th, 2026
DevSecOps explained for growing technology businesses
For many growing technology businesses, the pressure is familiar. Product teams want to ship quickly, operations want stability, and security needs to reduce risk without becoming a bottleneck. DevSecOps is the practical way to bring those priorities together.
more → Security Boulevard, Wednesday, May 13th, 2026
Data Trust + AI Success Blog Series: Why AI doesn't behave like a human
In most enterprise security programs, it's quietly assumed that the actor on the other side of a control is human. A person who can be trained, who will hesitate and, even with broad permissions, will exercise some natural judgment about what to open, what to share and what to leave alone.
more → Security Boulevard, Monday, May 11th, 2026
The Canvas Breach Shows What Happens When SaaS Platforms Become Identity Infrastructure
The breach involving Instructure, the company behind the Canvas learning management system used by thousands of schools and universities worldwide, arrived at a particularly bad moment for educational institutions.
more → Security Boulevard, Saturday, May 9th, 2026
The 2026 Roadmap to Post-Quantum AI Infrastructure Security
By 2026, the divide between organizations that have implemented cryptographic agility and those that haven't will be measured in their ability to survive automated, quantum-accelerated attacks - and the article lays out an MCP-endpoint audit, hybrid post-quantum cryptography, and zero-knowledge proofs as the urgent roadmap.
more →
Security Boulevard, Saturday, May 9th, 2026
Are Magic Links Secure: A Technical Deep Dive Into Email Based Authentication
Magic links can be excellent passwordless authentication or catastrophic depending on implementation - their security hinges on token entropy, single-use enforcement, expiry, and a threat model that addresses the token, email channel, user device, and mailbox together, making them an upgrade over passwords but a downgrade from passkeys for sensitive applications.
more → Security Boulevard, Friday, May 8th, 2026
Inside the 2026 Cyber Threat Landscape: Data-Driven Security Priorities
In 2026, the cyber threat landscape operates as a single connected system - identity, malware, and infrastructure are now part of the same automated attack chain, compressing the time between initial access and impact and forcing security teams to prioritize defenses that address these threats together rather than in silos.
more → Security Boulevard, Friday, May 8th, 2026
How Mythos Signals Cybersecurity Disruption
Anthropic's new Mythos AI model - which discovered thousands of previously unknown vulnerabilities (including a 27-year-old flaw) before its release - isn't a one-off event but a signal that AI's accelerating ability to find, exploit, and chain vulnerabilities will overturn current cybersecurity norms and force the industry to adapt at machine speed.
more → Security Boulevard, Friday, May 8th, 2026
Beyond Automation: A Dedicated DMARC Expert Support for Enterprise Teams
DMARC tools alone aren't enough - modern platforms can analyze authentication data and highlight issues, but enterprises still need dedicated DMARC experts to interpret findings, fix underlying problems, and safely move toward enforcement, with the right combination of platform and expert support enabling enforcement in roughly 55 days.
more → Security Boulevard, Monday, May 4th, 2026
The Half of Agent Security You're Not Governing
AI agent security frameworks focus on observable MCP servers while ignoring the opaque reasoning layer where most damage occurs.
more → Security Boulevard, Monday, May 4th, 2026
Security for AI: A strategic framework for closing the AI exposure gap
Tenable's five-step framework offers CISOs a systematic approach to closing the AI exposure gap - securing enterprise AI use through discovery, workload and infrastructure protection, prompt-level visibility, unified risk analysis, and acceptable-use policy enforcement - without slowing innovation.
more → Security Boulevard, Monday, May 4th, 2026
Identity Risk Intelligence vs Threat Intelligence: What's the Difference?
In cybersecurity conversations today, two terms are showing up more frequently: Threat Intelligence and Identity Risk Intelligence. At a glance, they sound similar. Both deal with data, risk, and security insights.
more → Security Boulevard, Monday, May 4th, 2026
Frameworks Don't Build Trust. Adoption Does
CSA extends its STAR assurance framework to AI, but agentic AI security vendors risk fragmenting the market by not adopting the standards themselves.
more → Security Boulevard, Monday, May 4th, 2026
Fake Party Invites and the Rise of Social Phishing Attacks
Attackers are now impersonating invitation services to trick people into clicking malicious links and sharing sensitive information. These phishing attempts look like legitimate event invites, making them especially effective. In this episode, we discuss how these scams work and what steps you can take to stay protected.
more → Security Boulevard, Monday, May 4th, 2026
Defining AI-First Engineers and AI-Native Engineers: The New Talent Blueprint [Hiring in the AI Era (Part 2)]
The article highlights the critical shift in modern hiring toward "AI-First" engineers who use AI to amplify productivity and "AI-Native" engineers who design entire systems around AI execution, emphasizing a new talent blueprint focused on orchestration and critical judgment.
more → Security Boulevard, Monday, May 4th, 2026
AI for Security Infrastructure: Rebalancing Cybersecurity for the Decade Ahead
Domain-specific language models (DSLMs) mark a turning point for cybersecurity by shifting strategy from reactive "assume breach" defense to AI-driven prevention, empowering security architects to close misconfiguration gaps before they're exploited.
more → Security Boulevard, Sunday, May 3rd, 2026
CISO Diaries: Victor-Andrei Nicolae on Practical Security, Patience, and AI-Driven Defense
A CISO discusses balancing security with business needs, the importance of patience, and preparing for AI-driven threats.
more → Security Boulevard, Friday, May 1st, 2026
Ultimate Guide to PCI Compliance for SaaS Companies
A comprehensive guide to implementing PCI DSS compliance for SaaS companies handling payment card information.
more → Security Boulevard, Friday, May 1st, 2026
Time to Rethink Privileged Access for Machines and AI Agents
Legacy PAM systems must evolve to manage machine identities and AI agents in modern cloud-native environments.
more → Security Boulevard, Friday, May 1st, 2026
Global Cyber Threat Brief: Identity Breaches, Supply Chain Attacks, and the Rise of Organized Cybercrime
Recent cyber attacks show organized crime groups exploiting identity systems, supply chains, and trusted relationships at scale.
more → Security Boulevard, Friday, May 1st, 2026
Building Entity Authority in Cybersecurity: The Trust Signals AI Models Actually Weight for Security Vendors
AI models cite cybersecurity vendors based on corroborated entity authority signals, not just content quality or rankings.
more → Security Boulevard, Thursday, April 30th, 2026
Wasn't Visibility Supposed to Fix This?
Visibility alone doesn't solve security remediation; organizations need context, orchestration, and execution alignment.
more → Security Boulevard, Thursday, April 30th, 2026
The Top 3 Ways Criminals Use AI in Cyber Attacks
Criminals exploit AI to automate attacks on SaaS environments through agent manipulation, social engineering, and accelerated reconnaissance.
more → Security Boulevard, Thursday, April 30th, 2026
Security Data Lake vs SIEM vs Data Pipeline
SIEMs detect and alert, data lakes store large volumes long-term, and data pipelines normalize and route security data between them.
more → Security Boulevard, Thursday, April 30th, 2026
Machine Identity Management Starts With Private PKI
Private PKI is essential for automating machine identity management and certificate lifecycle in modern cloud-native environments.
more → Security Boulevard, Wednesday, April 29th, 2026
Why Developer Experience Is the Foundation of DevSecOps Success
Developer experience is critical to successful DevSecOps implementation as application security execution lags behind organizational intent.
more →