433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Meta claims NSO Group still targets WhatsApp users despite court order

Meta claims it disrupted spear-phishing attempts linked to NSO Group and is asking a US federal court to hold the spyware vendor in contempt for allegedly violating an injunction that bars it from targeting WhatsApp and its users. “We successfully disrupted NSO-linked social engineering attempts after investigating user reports,” Meta stated. “They tried to trick people into clicking on malicious links to drive them to external websites outside of WhatsApp, similar to previously reported 1-click … More → The post Meta claims NSO Group still targets WhatsApp users despite court order appeared first on Help Net Security.
http://news.poseidon-us.com/TSxR1V

Microsoft changes how Defender for Endpoint EDR updates are delivered on Windows

Microsoft will distribute Defender for Endpoint EDR updates through Microsoft Update, enabling EDR security improvements to be released independently of monthly Windows operating system updates. The rollout started for Windows 10 devices in late May 2026 and will expand to Windows 11 and other supported Windows versions later this year. Microsoft expects deployment to be completed by fall 2026. Organizations whose devices receive updates through Microsoft Update do not need to take any action. Those … More → The post Microsoft changes how Defender for Endpoint EDR updates are delivered on Windows appeared first on Help Net Security.
http://news.poseidon-us.com/TSxKd0

Hackers used Meta’s AI support system to hijack over 20,000 Instagram accounts

Meta has revealed that attackers hijacked 20,225 Instagram accounts by exploiting a flaw in the company’s AI-assisted account recovery system. According to the company, a vulnerability in High Touch Support (HTS) allowed unauthorized parties to perform password resets on Instagram accounts. HTS is an AI-assisted account recovery system for Instagram designed to help users regain access to locked accounts. Users can request password reset links through the support workflow when they lose access to their … More → The post Hackers used Meta’s AI support system to hijack over 20,000 Instagram accounts appeared first on Help Net Security.
http://news.poseidon-us.com/TSx9KF

New Relic expands observability into AI-assisted software development

New Relic has announced AI Coding Observability, an open-source tool for monitoring AI-assisted software development workflows. As organizations adopt AI coding assistants, these tools often operate outside existing observability systems, limiting visibility into their use. AI Coding Observability extends monitoring into the software development process, enabling organizations to track, analyze, and audit AI-assisted coding activities. “You can’t manage what you can’t see. AI coding assistants are having a measurable impact on businesses, but without real-time … More → The post New Relic expands observability into AI-assisted software development appeared first on Help Net Security.
http://news.poseidon-us.com/TSx9K9

Qilin ransomware affiliate exploited Check Point VPN zero-day (CVE-2026-50751)

A Qilin ransomware affiliate is believed to be exploiting CVE-2026-50751, an authentication bypass vulnerability in Check Point VPN Remote Access and Mobile Access, the company announced on Monday. About CVE-2026-50751 Check Point Remote Access VPN enables and secures connections between corporate networks and remote or mobile devices. Check Point Mobile Access lets mobile and remote workers connect securely to email, calendar, contacts, and corporate applications. CVE-2026-50751 affects both solutions (i.e., functions on Check Point Security … More → The post Qilin ransomware affiliate exploited Check Point VPN zero-day (CVE-2026-50751) appeared first on Help Net Security.
http://news.poseidon-us.com/TSx9J3

RidgeBot 7.0 automates Active Directory attack simulations for security validation

Ridge Security has announced the release of RidgeBot 7.0, an update to its automated security validation platform that introduces automated Windows Active Directory penetration testing capabilities. The new version enables organizations to conduct end-to-end domain compromise simulations, helping security teams identify attack paths and prioritize exploitable risks. RidgeBot 7.0 delivers automated Active Directory penetration testing scenarios that include enumeration, credential extraction, lateral movement, and Domain Admin path validation. All attack activities are mapped to the … More → The post RidgeBot 7.0 automates Active Directory attack simulations for security validation appeared first on Help Net Security.
http://news.poseidon-us.com/TSx3GN

ConnectSecure’s Patch 360 gives MSPs control over patch testing and deployment

ConnectSecure has announced the launch of Patch 360, a patch management solution built for managed service providers (MSPs) to reduce deployment risk while accelerating vulnerability remediation. Patch management has long followed a “deploy-and-hope” model, with teams addressing critical issues only after users are impacted. Patch 360 replaces that approach with a rigorous test-and-trust framework that allows MSPs to validate patches before broad deployment, with visibility from prioritization and pilot testing through rollout and rollback. “As … More → The post ConnectSecure’s Patch 360 gives MSPs control over patch testing and deployment appeared first on Help Net Security.
http://news.poseidon-us.com/TSx3GF