433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Microsoft’s Copilot trust test: Zero findings, more models, wider oversight

Microsoft 365 Copilot and Copilot Chat (Copilot) have been recertified under ISO/IEC 42001:2023 by an independent auditor for the second consecutive year. Copilot first received ISO 42001 certification in March 2025. This year’s recertification recorded zero non-conformities and zero improvement observations, resulting in a second audit in a row. The certification evaluates the AI management system in areas including governance, risk assessment, data management, transparency, human oversight, and supplier management. Microsoft 365 Copilot is an … More → The post Microsoft’s Copilot trust test: Zero findings, more models, wider oversight appeared first on Help Net Security.
http://news.poseidon-us.com/TSm5RH

Zapier exploit chain shows how known anti-patterns compose into critical risk

A five-stage exploit chain disclosed by Token Security researchers turned a free Zapier account into write access on Zapier’s public developer SDK packages and on internal packages that load in every authenticated zapier.com session. Each link in the chain was a known anti-pattern. The composition across five systems was the finding. Zapier triaged the report within four days of submission on February 12, 2026, revoked the leaked NPM token, and tightened the underlying AWS role … More → The post Zapier exploit chain shows how known anti-patterns compose into critical risk appeared first on Help Net Security.
http://news.poseidon-us.com/TSm5Qc

OpenAI prepares ChatGPT for the election misinformation wave

AI-generated election misinformation could shape public opinion and influence the lives of millions of people. To address those risks, OpenAI outlined a series of safeguards ahead of the 2026 election cycle. The company said its efforts will focus on helping users access voting information, supporting cybersecurity defenders, and improving transparency around AI-generated content. “People already use ChatGPT to ask practical questions in their preferred languages about civic events: how to register, where to vote, what … More → The post OpenAI prepares ChatGPT for the election misinformation wave appeared first on Help Net Security.
http://news.poseidon-us.com/TSm5QX

Qumulo NeuralProtect uses AI to detect and stop ransomware before encryption

Qumulo has unveiled Qumulo NeuralProtect, a ransomware resilience solution built to protect data at the storage layer by detecting and stopping threats before data is encrypted, corrupted, or lost. Integrated directly into the Qumulo Data Platform, NeuralProtect inspects every file at the precise point-of-write using a series of AI-driven analysis models to detect both known and zero-day threats, instantly isolating malicious activity and enabling rapid recovery. NeuralProtect shifts ransomware protection from reactive recovery to proactive … More → The post Qumulo NeuralProtect uses AI to detect and stop ransomware before encryption appeared first on Help Net Security.
http://news.poseidon-us.com/TSm5QS

Digimarc adds provenance, audit, and verification controls for AI agent workflows

Digimarc has announced new provenance and verification infrastructure designed to secure autonomous and AI-enabled workflows. As enterprises increasingly adopt AI systems capable of generating content, orchestrating workflows, and taking action with minimal human intervention, establishing trusted provenance and verifiable authenticity is becoming mission critical. Digimarc’s new capabilities are designed to help organizations determine whether digital content and artifacts produced or consumed by autonomous AI agents can be trusted before downstream action occurs. The OWASP Top … More → The post Digimarc adds provenance, audit, and verification controls for AI agent workflows appeared first on Help Net Security.
http://news.poseidon-us.com/TSm5QL

Qevlar’s new AI agents correlate CVEs, incident data, and active exploitation signals

Qevlar has announced a new set of AI agents designed to bridge the disconnect between Security Operations Centers (SOCs) and vulnerability management teams. The new capabilities help security teams correlate CVEs with live incident data for real-time risk prioritization, automatically identify asset owners to speed remediation, and autonomously hunt for active CVE exploitation. General availability is scheduled for Fall 2026. Finding and exploiting zero-day vulnerabilities has never been faster or easier than in 2026. According … More → The post Qevlar’s new AI agents correlate CVEs, incident data, and active exploitation signals appeared first on Help Net Security.
http://news.poseidon-us.com/TSm5PG

Microsoft’s new cloud PCs place AI agents under enterprise controls

Microsoft’s Windows 365 for Agents, a cloud PC platform for agentic workloads, runs AI agents in secure environments. Organizations can direct agents with natural language to interact with applications, browsers, files, and enterprise systems. The platform is available in public preview. A conceptual computer-using agent architecture. (Source: Microsoft) Users will be able to automate workflows that rely on applications and systems without APIs, including legacy and UI-based environments, without giving up enterprise security or control. … More → The post Microsoft’s new cloud PCs place AI agents under enterprise controls appeared first on Help Net Security.
http://news.poseidon-us.com/TSlwJr

A single typo could derail your World Cup plans

Cybercriminals are spoofing Fédération Internationale de Football Association (FIFA) websites ahead of the 2026 FIFA World Cup, the FBI warns. The attackers are registering lookalike domains with small spelling changes or different domain endings to impersonate FIFA websites and services. The tactic, known as typosquatting, relies on users making small typing mistakes when entering website addresses. People who land on the fake sites may hand over names, addresses, phone numbers, email addresses, banking details, or … More → The post A single typo could derail your World Cup plans appeared first on Help Net Security.
http://news.poseidon-us.com/TSlwHL

Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns

Geopolitical pressure drove much of the state-sponsored cyber activity recorded between October 2025 and March 2026, according to ESET’s latest APT Activity Report. Espionage groups aligned with China, North Korea, Russia, and Iran adjusted their targets to match the economic and security concerns of their governments. Attack sources (Source: ESET) “In Asia, the campaigns primarily focused on governmental organizations, strategic industries, and advanced technology sectors. In the Middle East, Israel remained the principal focus of … More → The post Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns appeared first on Help Net Security.
http://news.poseidon-us.com/TSlshX