Risk, readiness and resilience
Why serious AI companies are skipping the hype hubs and landing here instead.http://news.poseidon-us.com/TRf5Q5
http://news.poseidon-us.com/TRf5Q5
http://news.poseidon-us.com/TRf5Q5
Booz Allen’s Vellox brings AI vs. AI defense to protect critical infrastructure and national security
Booz Allen Hamilton’s new Vellox suite showcases how AI-native cyber defense can counter growing threats to U.S. national security and critical infrastructure. The company’s new threat report, When Cyberattacks Happen at AI Speed, shows that AI is widening the gap between the speed of cyberattacks and time to respond. In 2025, the average breakout time from initial access to ability to move into other systems “dropped to under 30 minutes, with the fastest cases measured … More → The post Booz Allen’s Vellox brings AI vs. AI defense to protect critical infrastructure and national security appeared first on Help Net Security.http://news.poseidon-us.com/TRf2wh
Your AI agents are moving sensitive data. Do you know where?
In this Help Net Security interview, Gidi Cohen, CEO at Bonfy.AI, addresses what he sees as the most pressing gap in AI agent security: data-layer risk. While the industry focuses on prompt injection and model behavior, Cohen argues the deeper threat is autonomous AI agents operating across systems with no visibility into what data they access, combine, or expose. He explains how Bonfy.AI approaches this through three areas: controlling what data agents can access for … More → The post Your AI agents are moving sensitive data. Do you know where? appeared first on Help Net Security.http://news.poseidon-us.com/TRf2v1
Plumber: Open-source scanner of GitLab CI/CD pipelines for compliance gaps
GitLab CI/CD pipelines often accumulate configuration decisions that drift from security baselines over time. Container images get pinned to mutable tags, branches lose protection settings, and required templates go missing. An open-source tool called Plumber automates the detection of those conditions by scanning pipeline configuration and repository settings directly. What Plumber checks Plumber reads a project’s .gitlab-ci.yml file and queries the GitLab API to produce a compliance report. It includes eight controls that teams can … More → The post Plumber: Open-source scanner of GitLab CI/CD pipelines for compliance gaps appeared first on Help Net Security.http://news.poseidon-us.com/TRf0Jm
NIST updates its DNS security guidance for the first time in over a decade
DNS infrastructure underpins nearly every network connection an organization makes, yet security configurations for it have gone largely unrevised at the federal guidance level for more than twelve years. NIST published SP 800-81r3, the Secure Domain Name System Deployment Guide, superseding a version that dates to 2013. The document covers three main areas: using DNS as an active security control, securing the DNS protocol itself, and protecting the servers and infrastructure that run DNS services. … More → The post NIST updates its DNS security guidance for the first time in over a decade appeared first on Help Net Security.http://news.poseidon-us.com/TRdzPM
ATO to upgrade its IBM mainframe again in quiet $104.8m deal
http://news.poseidon-us.com/TRdlFt
Yarra Valley Water betting on AI to predict asset failures
http://news.poseidon-us.com/TRdl16
US, Germany, Canada disrupt botnets
http://news.poseidon-us.com/TRdgP0
“CanisterWorm” supply chain malware attacks npm
http://news.poseidon-us.com/TRdgHT