Category Archives: Uncategorized

Securing digital keys when your phone unlocks the car

In this interview with Help Net Security, Alysia Johnson, President of the Car Connectivity Consortium (CCC), explains how the CCC Digital Key has grown from a single-brand feature into a standard meant to work across phones, automakers, and suppliers. She talks through what changed with Version 4, why the team focused on interoperability and testing instead of one new threat, and how NFC fallback access stays protected. She also covers fast credential revocation when a … More → The post Securing digital keys when your phone unlocks the car appeared first on Help Net Security.
http://news.poseidon-us.com/TT5ZQd

Google’s open standard for AI agents to discover and verify tools

AI agents depend on tools, skills, and other agents spread across many teams, organizations, and platforms. These capabilities live in separate systems with their own registries, and an agent working in one environment has limited means to locate and connect to a resource hosted somewhere else. Google addressed this gap with Agentic Resource Discovery, an open specification for publishing, discovering, and verifying AI capabilities across the web. It allows tools and services to be shared … More → The post Google’s open standard for AI agents to discover and verify tools appeared first on Help Net Security.
http://news.poseidon-us.com/TT5ZQX

How security teams are getting credential visibility into developer endpoints

As we noted in our earlier analysis, attackers already know secrets are on your developers’ machines, the only question is whether security teams do. The supply chain attack calendar of 2026 has been relentless. Megalodon backdoored 5,500 GitHub repositories in six hours. TrapDoor spread across npm, PyPI, and Crates.io simultaneously, planting persistence inside AI coding assistant config files. Miasma compromised 32 official Red Hat packages by abusing GitHub’s trusted publishing. Each campaign shared the same … More → The post How security teams are getting credential visibility into developer endpoints appeared first on Help Net Security.
http://news.poseidon-us.com/TT5ZNP

What happens to oversight when AI agents write a lab’s own code

Inside the labs building frontier AI, a growing share of the coding gets done by the AI itself. These agents write, edit, and run software with light human oversight between steps, and they reach into production infrastructure, research pipelines, and potentially the systems that train and evaluate future models. A new analysis from researchers at the University of Oxford and SaferAI digs into the security risks that live in everything around those agents: the people … More → The post What happens to oversight when AI agents write a lab’s own code appeared first on Help Net Security.
http://news.poseidon-us.com/TT5XhZ

AWS Continuum brings AI models to code vulnerability management

AWS Continuum for code vulnerabilities, a system built to handle a vulnerability across its lifecycle, from discovery through to a fix, is now available in gated preview. It reasons over a customer’s environment, confirms which findings are real, and works toward resolution. It is model agnostic and draws on multiple frontier models, assigning each to the work where it performs best. AWS designed it to take in newer models as they become available. “We need … More → The post AWS Continuum brings AI models to code vulnerability management appeared first on Help Net Security.
http://news.poseidon-us.com/TT5XhV

Homebrew tightens tap security, begins work on its interface

Anyone who installs software through a third-party Homebrew tap runs Ruby code written by people outside the project, and that code runs without a sandbox. That risk sits at the center of Homebrew 6.0.0. Tap trust Homebrew now requires a tap, along with any tap-qualified formula or cask, to be trusted before its code is evaluated or run. The official Homebrew taps stay trusted by default. The brew tap command gains options for managing trust … More → The post Homebrew tightens tap security, begins work on its interface appeared first on Help Net Security.
http://news.poseidon-us.com/TT5XhQ

Most agentic AI projects in production have stalled over data problems

Enterprises are connecting AI agents to live data feeds and putting them to work on tasks that once required human review, from IT operations to software development. The number doing this in production reached 32 percent in 2026, up from 29 percent the year before, according to Confluent’s annual Data Streaming Report, which surveyed 4,625 IT leaders across 14 countries. Governance and data quality top the list of agentic AI obstacles IT leaders point to … More → The post Most agentic AI projects in production have stalled over data problems appeared first on Help Net Security.
http://news.poseidon-us.com/TT5Xgf

LMG bets on Slack as an enterprise platform

Unifies company messaging in move away from email.
http://news.poseidon-us.com/TT5W5h

ISC Stormcast For Thursday, June 18th, 2026 https://isc.sans.edu/podcastdetail/9978, (Thu, Jun 18th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
http://news.poseidon-us.com/TT5SfG