433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (656) 236-3022

VS Code agent host runs Copilot, Claude, and Codex in a dedicated process

Developers who lean on AI coding agents often keep several editor windows open at once, each tied to its own session. The 1.129 release of Visual Studio Code reworks that setup with a dedicated agent host. A dedicated process for agent sessions The agent host is a separate process that runs agent harnesses such as Copilot, Claude, and Codex, built on the Agent Host Protocol. Because a session lives in its own process, one session … More → The post VS Code agent host runs Copilot, Claude, and Codex in a dedicated process appeared first on Help Net Security.
http://news.poseidon-us.com/TTYjRn

Reading between the lines of a cyber insurance policy

Enterprises in regulated industries often carry cyber insurance policies because contracts require it or boards ask for documented risk transfer. The global market for these policies reached about $16 billion in premiums in 2024. Coverage has become widespread. Payouts have grown less predictable. The gap between exposure and coverage The Global Federation of Insurance Associations, which represents insurers accounting for close to 90 percent of premiums worldwide, quantified the cyber protection gap at about $900 … More → The post Reading between the lines of a cyber insurance policy appeared first on Help Net Security.
http://news.poseidon-us.com/TTYf55

What public money does to open-source projects

Most of the software running inside a typical company was written by volunteers the company never paid. Open-source code sits under web apps, build pipelines, and the machine learning stacks getting so much attention right now. Roughly 96 percent of codebases carry some of it. That dependence turned visible in December 2021, when the log4j flaw exposed applications from Twitter to Minecraft. The xz utils backdoor of 2024 drove the point home again. Both traced … More → The post What public money does to open-source projects appeared first on Help Net Security.
http://news.poseidon-us.com/TTYf4V

Ransom demands are down, email is the top way attackers get in

An employee opens an email that looks like any other, clicks a link, and gives up a password without noticing. A stolen login opens a door deeper in the network. Files stop opening a few days later. That chain now sits at the front of most ransomware cases. Malicious email and phishing together account for half of all incidents, based on a survey of 2,158 IT and security leaders whose organizations were hit in the … More → The post Ransom demands are down, email is the top way attackers get in appeared first on Help Net Security.
http://news.poseidon-us.com/TTYc9D

Companies keep getting breached by vulnerabilities they already knew about

Scanning tools have gotten good at their work. Organizations now find more weaknesses across more of their systems than at any earlier point in the industry’s history. A survey from the security firm Vicarius points to a gap that opens after that discovery, in the work of assigning, approving, deploying, and confirming a fix. The company surveyed 300 IT and cybersecurity leaders in the United States and the United Kingdom, at organizations with 500 to … More → The post Companies keep getting breached by vulnerabilities they already knew about appeared first on Help Net Security.
http://news.poseidon-us.com/TTYc9C

GPT-Red beat human red teamers on a prompt injection test

GPT-Red is an automated red-teaming model that OpenAI trains to find prompt injection weaknesses. It works the way a human red-teamer does. It sends a prompt, watches how a GPT model responds, and iterates toward a goal such as a successful data exfiltration. Training runs on self-play reinforcement learning, with GPT-Red and a set of defender models learning at the same time across many scenarios. The attacker earns reward for eliciting a valid failure. The … More → The post GPT-Red beat human red teamers on a prompt injection test appeared first on Help Net Security.
http://news.poseidon-us.com/TTYc9B

Finance phishing works because it sounds boringly normal

Finance departments process a constant stream of invoices, contracts, payment notices, and procurement emails, making email one of the most common initial access vectors for threat actors. According to Cofense, attackers exploit those workflows with phishing emails that resemble legitimate business correspondence rather than relying on urgency-based lures. Such phishing emails are also likely to bypass AI-based secure email gateways (SEGs) and other email security technologies. Threat actors understand that employees in financial services organizations … More → The post Finance phishing works because it sounds boringly normal appeared first on Help Net Security.
http://news.poseidon-us.com/TTYc8x

Quantum breakthrough links light and magnetism in atomically thin materials

A new review highlights exciting progress in atomically thin quantum materials where light and magnetism work together in ways never before possible. In these materials, light-generated excitons can interact directly with magnetic behavior, creating opportunities to control magnetic states using light alone. Scientists believe this could pave the way for advanced optical memory, quantum devices, and ultra-efficient photonic technologies.
http://news.poseidon-us.com/TTYbSK