433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | [email protected] | Office: (813) 563-2652

Europeans targeted with new Tor-using backdoor and infostealers

A financially motivated threat actor has been targeting German and Polish-speaking users with info-stealing malware and TorNet, a previously undocumented .NET backdoor that leverages the Tor network to evade detection. The phishing email The attacker sends out fake money transfer confirmations and order receipts via email, supposedly sent by financial institutions and manufacturing and logistics companies. A phishing email used in the campaign (Source: Cisco Talos) The emails carry a malicious attachment: a TGZ file … More → The post Europeans targeted with new Tor-using backdoor and infostealers appeared first on Help Net Security.
http://news.poseidon-us.com/THdD1C

Trump orders a funding freeze as his administration reviews federal loans and grants

The funding freeze takes effect at 5 p.m. Eastern on Tuesday. Even grants that have been awarded but not spent are supposed to be halted. The post Trump orders a funding freeze as his administration reviews federal loans and grants first appeared on Federal News Network.
http://news.poseidon-us.com/THdCnh

Trump signs order that likely sets in motion a future ban on transgender troops

President Donald Trump has signed a flurry of executive orders focused on the military. The orders come just after Hegseth began his first day on the job. The post Trump signs order that likely sets in motion a future ban on transgender troops first appeared on Federal News Network.
http://news.poseidon-us.com/THd7yl

US places dozens of senior aid officials on leave, citing possible resistance to Trump orders

At least 56 senior officials in USAID have been placed on leave amid an investigation into an alleged effort to thwart President Trump’s orders. The post US places dozens of senior aid officials on leave, citing possible resistance to Trump orders first appeared on Federal News Network.
http://news.poseidon-us.com/THd7b5

ForensicScope Regula 4125 detects counterfeit documents

Regula has launched the portable and autonomous ForensicScope Regula 4125. The new device enables ID verification in any place and environment: at border and inland checkpoints, at airports, in transport, etc. Although the Regula 4125 is only smartphone-sized, it is capable of performing a wide range of document checks typical for professional forensic equipment. The new Regula 4125 is particularly effective at detecting morphing in photos in identity documents. Face morphing is an insidious threat … More → The post ForensicScope Regula 4125 detects counterfeit documents appeared first on Help Net Security.
http://news.poseidon-us.com/THd5sQ

Hiya AI Phone blocks spam and irrelevant calls

Hiya has introduced Hiya AI Phone, an AI call assistant mobile app. Designed for busy professionals, Hiya AI Phone acts like a personal assistant, saving time by screening unwanted phone calls, safeguarding against phone scams, and taking notes during calls to ensure seamless follow-up. Managing phone calls has become increasingly challenging, with professionals losing valuable time each month to robocalls, scams, and unknown numbers. According to data from Hiya, on average, Americans spend 40 minutes … More → The post Hiya AI Phone blocks spam and irrelevant calls appeared first on Help Net Security.
http://news.poseidon-us.com/THd5r4

Evolving tech talent woes call for new ‘cultural’ playbook

As leaders confront leaner budgets, creating a strong culture can be a key talent retention tool, Grant Thornton’s Andrea Schulz said.
http://news.poseidon-us.com/THd3hh

Apple zero-day vulnerability exploited to target iPhone users (CVE-2025-24085)

Apple has shipped a fix for a zero-day vulnerability (CVE-2025-24085) that is being leveraged by attackers against iPhone users. About CVE-2025-24085 CVE-2025-24085 is a use after free bug in CoreMedia, a framework used by Apple devices for the processing of media data. The vulnerability can be triggered by a malicious application and may allow attackers to elevate privileges on targeted devices. “Apple is aware of a report that this issue may have been actively exploited … More → The post Apple zero-day vulnerability exploited to target iPhone users (CVE-2025-24085) appeared first on Help Net Security.
http://news.poseidon-us.com/THd2fx

Compliance Scorecard Version 7 simplifies compliance management for MSPs

Compliance Scorecard released Compliance Scorecard Version 7. This latest release is designed to seamlessly integrate compliance into cybersecurity offerings, delivering new features that simplify and enhance compliance management for MSPs and their clients. Compliance Scorecard Version 7 builds on its reputation for providing specialized tools for privacy compliance and data protection. These enhancements complement existing features—such as policy management, compliance assessments, and customizable reporting—enabling MSPs to provide comprehensive compliance solutions. The platform’s new capabilities allow … More → The post Compliance Scorecard Version 7 simplifies compliance management for MSPs appeared first on Help Net Security.
http://news.poseidon-us.com/THcwhn

Fileless Python InfoStealer Targeting Exodus, (Tue, Jan 28th)

Exodus is a well-known crypto wallet software[1] and, when you are popular, there are chances that attackers will target you! I already wrote a diary related to this application[2]. Yesterday, I found a new one that behaves differently. My previous diary described a Python script that will patch the original Exodus software. Today, it&#x27s a real “info stealer”.
http://news.poseidon-us.com/THcrYg