433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

No title

On April 23, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an update to V1: Emergency Directive (ED) 25-03: Identify and Mitigate Potential Compromise of Cisco Devices related to Cisco Secure Firewall Adaptive Security Appliance (ASA) and Cisco Secure Firewall Threat Defense (FTD) products. According to the update, the ArcaneDoor threat actor has developed a previously unknown persistence mechanism that is preserved across upgrading to the fixed releases that were published in September 2025. This persistence mechanism resides in the Cisco Firepower eXtensible Operating System (FXOS) Software base operating system for Cisco Secure Firewall ASA Software and Cisco Secure FTD Software installations on the affected hardware platforms. Note: According to the intelligence Cisco PSIRT has received to date, the initial compromise, begins with the attacker exploiting the following vulnerabilities before customers upgraded to the fixed releases that were made available in September 2025: * CVE-2025-20333: Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability * CVE-2025-20362: Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability For more information about the fixed releases that were made available in September 2025, see September 2025 Cisco Event Response: Continued Attacks Against Cisco Firewalls. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-persist-CISAED25-03 Security Impact Rating: Informational
http://news.poseidon-us.com/TSBPzN

Hacker with a special interest in breaching sports institutions ends behind bars

French police have arrested a suspected hacker linked to a series of data breaches affecting organizations in the country. Citing authorities, Le Parisien reported that the suspect, a 20-year-old man using the alias ‘HexDex,’ was taken into custody on April 22, 2026, in the Vendée region, western France. The suspect admitted to using the alias ‘HexDex,’ which he used to claim the leaks online and repost the data on forums such as BreachForum and Darkforum, … More → The post Hacker with a special interest in breaching sports institutions ends behind bars appeared first on Help Net Security.
http://news.poseidon-us.com/TSBN9l

AI just discovered new physics in the fourth state of matter

Physicists have taken a major step toward using AI not just to analyze data, but to uncover entirely new laws of nature. By combining a specially designed neural network with precise 3D tracking of particles in a dusty plasma—a strange “fourth state of matter” found from space to wildfires—the team revealed hidden patterns in how particles interact. Their model captured complex, one-way (non-reciprocal) forces with over 99% accuracy and even overturned long-held assumptions about how these forces behave.
http://news.poseidon-us.com/TSBK0f

IP Fabric MCP server adds governance and control to enterprise AIOps workflows

IP Fabric has launched a new Model Context Protocol (MCP) server that removes key barriers to enterprise AIOps adoption, combining secure in-platform deployment with a built-in prompt library for network operations. While MCP servers and AI integrations are increasingly common, most fall short in enterprise environments where security, control and trusted data are non-negotiable. IP Fabric eliminates these barriers to enterprise AIOps adoption with a purpose-built solution that delivers a practical and governed path to … More → The post IP Fabric MCP server adds governance and control to enterprise AIOps workflows appeared first on Help Net Security.
http://news.poseidon-us.com/TSBJYx

Aqua Compass MCP server enables real-time investigation and containment of runtime threats

Aqua Security has announced Aqua Compass, a Model Context Protocol (MCP) server that enables agentic investigation, containment and remediation of runtime incidents, and new runtime risk dashboards. These capabilities help security teams move beyond identifying risk and focus on containing threats in running applications. The announcement builds on Aqua’s Secure AI capabilities, extending the company’s AI innovation from protecting AI applications to applying AI directly to runtime security operations. Cloud native development and AI-generated code … More → The post Aqua Compass MCP server enables real-time investigation and containment of runtime threats appeared first on Help Net Security.
http://news.poseidon-us.com/TSBJYn

Google brings instant email verification to Android, no OTP needed

Google has introduced cryptographically verified email credentials for Android through the Credential Manager API. This API aligns with the W3C Digital Credential API standard. It provides a unified way for apps to request and retrieve user credentials for authentication and authorization. “By integrating the new verified email via the Credential Manager API, you can reduce onboarding friction and provide a more streamlined and secure authentication flow. This reflects a shift toward a future where verification … More → The post Google brings instant email verification to Android, no OTP needed appeared first on Help Net Security.
http://news.poseidon-us.com/TSBJWx

Apple fixes iPhone bug that let FBI retrieve deleted Signal messages(CVE-2026-28950)

Apple has rolled out security updates for iPhones and iPads that fix CVE-2026-28950, a logging issue in Notification Services that made devices unexpectedly retain notifications marked for deletion. The vulnerability was patched following a recent report about the FBI accessing a suspect’s Signal message notification content on their iPhone, despite Signal being deleted from the device. As usual, Apple did not offer more details about the flaw; it just said that the issue was addressed … More → The post Apple fixes iPhone bug that let FBI retrieve deleted Signal messages(CVE-2026-28950) appeared first on Help Net Security.
http://news.poseidon-us.com/TSBB65

GopherWhisper APT group hides command and control traffic in Slack and Discord

Attackers continue to lean on everyday collaboration platforms to hide command and control traffic inside normal enterprise noise. A newly identified China-aligned APT group pushes that trend further, running its operations through Slack workspaces, Discord servers, Outlook drafts, and the file.io sharing service. GopherWhisper toolset overview ESET researchers have named the group GopherWhisper and tied it to an intrusion at a Mongolian governmental entity. The name draws on two elements: most of the group’s tooling … More → The post GopherWhisper APT group hides command and control traffic in Slack and Discord appeared first on Help Net Security.
http://news.poseidon-us.com/TSB5Mq

OpenAI tackles a bad habit people have when interacting with AI

Since people tend to paste personal data into AI tools such as ChatGPT, OpenAI has released Privacy Filter, an open-weight model designed to detect and redact personally identifiable information (PII) in text. The model is available under the Apache 2.0 license on Hugging Face and GitHub. “This release is part of our broader effort to support a more resilient software ecosystem by providing developers with practical infrastructure for building with AI safely, including tools and … More → The post OpenAI tackles a bad habit people have when interacting with AI appeared first on Help Net Security.
http://news.poseidon-us.com/TSB30P