433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Algerian national accused of running cybercrime marketplaces extradited to US

An Algerian national accused of running online marketplaces that sold phishing kits and fraud tools has been extradited from Spain to the United States to face bank fraud conspiracy charges. The post Algerian national accused of running cybercrime marketplaces extradited to US appeared first on Help Net Security.
http://news.poseidon-us.com/TTBh4W

Anthropic’s Claude Tag gives AI agents independent identities

Anthropic introduced an agent identity model for Claude Tag, its AI assistant designed for team collaboration in shared workspaces. The model gives Claude its own identity, permissions, and tool access, configured by administrators and tied to a workspace or channel. Because Claude does not rely on individual user credentials, access remains separate from employees’ personal accounts, reducing the risk of exposing private documents through shared channels. How teams scope Claude’s tool access in Claude Tag: … More → The post Anthropic’s Claude Tag gives AI agents independent identities appeared first on Help Net Security.
http://news.poseidon-us.com/TTBh3C

Phishing attack on healthcare firm Xsolis impacts 1.4 million people

Healthcare technology company Xsolis confirmed that a phishing attack resulted in unauthorized access to its network. The company develops AI-powered software for hospitals, health systems, and health plans and serves more than 600 hospitals and health insurers. “On January 22, 2026, Xsolis became aware of unauthorized activity impacting a limited portion of the Xsolis environment resulting from a targeted phishing attack on January 20, 2026,” Xsolis said. Xsolis said it took immediate action to contain … More → The post Phishing attack on healthcare firm Xsolis impacts 1.4 million people appeared first on Help Net Security.
http://news.poseidon-us.com/TTBczk

SuperOps and Guardz bundle IT operations and security into one product for MSPs

SuperOps and Guardz announced a strategic partnership, combining their platforms into a single bundled offering for managed service providers (MSPs). The package brings professional services automation (PSA), remote monitoring and management (RMM), mobile device management (MDM), and agentic security operations into one purchase. Both companies build AI-native software for the MSP market. SuperOps runs IT operations and endpoint management. Guardz runs security operations. The partnership connects the two so that operational data and security data … More → The post SuperOps and Guardz bundle IT operations and security into one product for MSPs appeared first on Help Net Security.
http://news.poseidon-us.com/TTBczj

Cisco Unified CM flaw actively exploited to drop webshells (CVE-2026-20230)

CVE-2026-20230, a server-side request forgery (SSRF) vulnerability affecting Cisco’s Unified Communications Manager (Unified CM), is being exploited to drop webshells and achieve remote code execution capability on the underlying server. “Our honeypots are seeing automated sweeps dropping webshells, all via Tor,” threat intelligence firm Defused warned today, after observing initial attacks over the weekend. “The observed chain abuses the WebDialer SSRF to deploy a rogue Apache Axis service, uses that service to write a first-stage … More → The post Cisco Unified CM flaw actively exploited to drop webshells (CVE-2026-20230) appeared first on Help Net Security.
http://news.poseidon-us.com/TTBcyQ

LastPass customer data exposed through Klue supply chain attack

LastPass disclosed that attackers used OAuth tokens compromised in a supply chain attack on Klue, a market intelligence platform that integrates with CRM and sales tools across organizations, to access customer data stored in its Salesforce environment. “On June 12th LastPass was made aware of an incident that occurred at Klue (klue.com), a third-party market intelligence platform utilized by our go-to-market teams which integrates with our Salesforce and Gong systems,“ LastPass said. “We immediately launched … More → The post LastPass customer data exposed through Klue supply chain attack appeared first on Help Net Security.
http://news.poseidon-us.com/TTBWlm

Google Workspace expands password reset alerts to all admins

Google’s Alert Center, a dashboard in the Google Admin console that displays security and administrative alerts and helps administrators identify, investigate, and respond to issues affecting their organization, is expanding the “Super Admin password reset” alert into the “Admin password reset” alert. The feature is rolling out gradually and will be available to all Google Workspace customers. “This update provides admins with better visibility and control over the security of their organization’s privileged accounts. Monitoring … More → The post Google Workspace expands password reset alerts to all admins appeared first on Help Net Security.
http://news.poseidon-us.com/TTBSgl

Qodo expands platform to help teams govern AI-generated code and engineering standards

Qodo has announced three new platform capabilities: Cross-Repo Code Review, Custom Rules Miner, and Skill Review Standards. These new capabilities address a set of governance gaps that have emerged as AI-generated code reaches enterprise scale. AI agents have fundamentally changed how software is built. Code that once required developers to write, test, and review is now generated and pushed by agents operating with increasing autonomy across the development lifecycle. The governance systems that enterprises created … More → The post Qodo expands platform to help teams govern AI-generated code and engineering standards appeared first on Help Net Security.
http://news.poseidon-us.com/TTBP8V