Wednesday afternoon's AI Infrastructure Field Day starts with Forward Networks.

Join us live on LinkedIn or YouTube

https://www.youtube.com/watch?v=UzgDUdAbjRw
https://www.linkedin.com/video/live/urn:li:ugcPost:7422751451011112963/

DPU asics! What's not to love. @xsight labs is presenting live at AI Infrastructure Field Day 4 #AIIFD4

https://www.youtube.com/watch?v=LJgFDO3tMA4

https://www.linkedin.com/video/live/urn:li:ugcPost:7422669207168925696/

Day 2 of AI Infrastructure Field Day starts right now with Hammerspace

LinkedIn Live: https://www.linkedin.com/video/live/urn:li:ugcPost:7422669207168925696/

YouTube Live: https://www.youtube.com/watch?v=wiHJw1FWvak

Really looking forward to this live presentation with @Fabrix.ai at AI Infrastructure Field Day 4 #AIIFD4

https://www.linkedin.com/video/live/urn:li:ugcPost:7422403982209343488/

Cisco is discussing AI networking in the enterprise as part of their live presentation for AI Infrastructure Field day - join us live https://www.linkedin.com/video/live/urn:li:ugcPost:7422343610194575360/ #AIIFD4

Hey, look - AI Infrastructure Field Day 4 is also broadcasting live on YouTube

https://www.youtube.com/watch?v=d0fMf_QIrFQ

#AIIFD4

We're kicking off AI Infrastructure Field Day 4 with @Cisco.

Join us live at https://www.linkedin.com/video/live/urn:li:ugcPost:7422306555708096512/

Ask questions on LinkedIn or DM me and I'll ask for you. #AIIFD4

The castle has fallen. Your perimeter is fiction. The NSA just dropped its Zero Trust Implementation Guidelines—and they're not playing games. Every org needs this roadmap NOW. Nation-states are already inside "secure" networks. All aboard or get left behind. https://securityboulevard.com/2026/01/all-aboard-the-zero-trust-train/

The ServiceNow 'BodySnatcher' vulnerability (CVE-2025-12420) shows why AI's race to market is a security disaster. Unauthenticated attackers hijacking AI agents to bypass MFA? This is what happens when we ship AI without proper security. My latest: https://securityboulevard.com/2026/01/were-moving-too-fast-why-ais-race-to-market-is-a-security-disaster/

Attackers see your network as a connected graph. You see disconnected alerts. That's why you're losing.

Microsoft Sentinel's AI librarian changes everything—from natural language queries to real-time attack disruption.

The SOC revolution: https://paradigmtechnica.com/2025/12/29/the-ai-librarian-how-microsoft-sentinel-transforms-chaos-into-clarity/

#cybersecurity #AI #SOC #TFDx

Attackers see your network as a web of opportunities. You see disconnected silos.

Microsoft Sentinel's Attack Graph finally gives defenders the same view hackers have always had.

New blog on why graph thinking changes everything 👇
https://paradigmtechnica.com/2025/12/22/hackers-think-in-graphs-your-security-team-should-too/

Identity fraudsters found the weak spot: attack the chip, disable digital verification, claim it got damaged in my pocket.
HINT's solution is almost too simple: make the chip visible. Attacks leave cracks, burns, blisters anyone can see.
Low-tech answer to high-tech threat. https://securityboulevard.com/2025/12/can-a-transparent-piece-of-plastic-win-the-invisible-war-on-your-identity/

Attackers exploit new vulnerabilities in 5 days. Your monthly patch cycle takes 30.
The math doesn't work anymore. Traditional vulnerability management is broken.
Continuous exposure management isn't optional—it's survival.
https://paradigmtechnica.com/2025/12/16/when-five-days-decides-everything-the-structural-reset-in-vulnerability-management/

New Op-Ed: The $10B Blind Spot—How OWASP's Top 10 Legitimizes Agent Insecurity
MCP's optional auth is quicksand for AI agents.
Attribution gaps? Token bombs? We need to burn it down & build mandatory Zero Trust identities

Read: https://paradigmtechnica.com/2025/12/11/the-10-billion-blind-spot-how-owasp-just-legitimized-agent-insecurity/
#AISecurity #OWASP #CyberSec

🚨 New Op-ed: Gartner's AI Browser Ban: Rearranging Deck Chairs on the Titanic
Banning AI browsers won't work—agentic AI is already in Microsoft 365, Slack & Zoom. The threat isn't the browser, it's the agents. You can't ban the future. Secure it.
https://securityboulevard.com/2025/12/gartners-ai-browser-ban-rearranging-deck-chairs-on-the-titanic

RE: https://floss.social/@gisgeek/115679063672736382

@gisgeek brings up some interesting and salient points about FOSS.

Check it out!

A brief post inspired by a recent @poller post, about FOSS at a dead end for security.

https://lovergine.com/too-many-eyes-or-too-few-efforts.html

#foss #security #governance #dev

AI safety ≠ AI security, and confusing them leaves you vulnerable on multiple fronts.
Safety = keeping your model ethical
Security = protecting systems from attackers
Your AI can be "safe" yet catastrophically insecure (or vice-versa).

Learn more: https://paradigmtechnica.com/2025/12/04/beyond-the-buzzwords-what-ai-safety-and-security-actually-mean-and-why-it-matters/

@Epic_Null Microsoft does bear some responsibility.

But recognize that NPM was born in 2010, capitalized in 2014, acquired by Github (Microsoft) in 2020.

So for the first 10 years of its life, it wasn't owned by Microsoft and it suffered from the all-too-common SOP of bolting security on as an afterthought.

And that's the major issue *I* am discussing: We -- as a community -- must focus on designing security from day 0.

@Epic_Null Yes, you're correct: NPM's core design is deeply flawed.

And that's my point. It's yet another open-source project built without any concern for security.

In the interest of space, I decided not to discuss the plethora of other open source compromises, such as the XZ / openSSH attack.