433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Attackers use Windows App-V scripts to slip infostealer past enterprise defenses

A malware delivery campaign detailed by Blackpoint researchers employs an impressive array of tricks to deliver an infostealer to employees without triggering enterprise defenses or close examination by security researchers. The attackers aim to get the Amatera Stealer installed on target Windows computers by using fake human verification pages – i.e., CAPTCHA pages – to trick users into manually pasting and executing a command via the Run dialog. And here is where things get interesting. … More → The post Attackers use Windows App-V scripts to slip infostealer past enterprise defenses appeared first on Help Net Security.
http://news.poseidon-us.com/TQbRph

Tenable One AI Exposure delivers unified visibility and governance across AI, cloud and SaaS

Tenable announced general availability of Tenable One AI Exposure. With this release, the Tenable One Exposure Management Platform unifies AI protection, discovery and usage governance across the enterprise, including SaaS platforms, cloud services, APIs and agents. AI is deeply embedded and interconnected throughout organizations, creating the “AI Exposure Gap,” a largely invisible form of exposure that emerges across applications, infrastructure, identities, agents and data, and that most security teams are not equipped to manage. Many … More → The post Tenable One AI Exposure delivers unified visibility and governance across AI, cloud and SaaS appeared first on Help Net Security.
http://news.poseidon-us.com/TQbRpg

NICE Actimize Insights Network combats fraudulent transfers

NICE Actimize launched Actimize Insights Network, an intelligence network designed to give financial institutions real-time visibility into counterparty risk. Leveraging insights from its Fraud and Financial Crime network, the Actimize Insights Network delivers the scale and precision needed to prevent fraud before money moves while supporting governance. Financial institutions continue to face growth in authorized push payment (APP) scams, business email compromise (BEC), and other schemes in which legitimate customers are manipulated into sending money … More → The post NICE Actimize Insights Network combats fraudulent transfers appeared first on Help Net Security.
http://news.poseidon-us.com/TQbRpJ

HackerOne brings Agentic PTaaS to continuous, expert-validated pentesting

HackerOne announced Agentic Pentest as a Service (Agentic PTaaS), delivering continuous security validation by combining autonomous agent execution with human expertise to ensure every finding reflects exploitable risk that security teams can trust and act on at scale. Enterprise security teams face a growing gap between development velocity and security validation. Traditional pentests deliver depth and trust, but they struggle to keep pace with continuous change. At the other extreme, fully autonomous testing promises speed … More → The post HackerOne brings Agentic PTaaS to continuous, expert-validated pentesting appeared first on Help Net Security.
http://news.poseidon-us.com/TQbHJ8

Microsoft brings AI-powered investigations to security teams

Microsoft Purview Data Security Investigations is now available. The tool is part of Microsoft Purview and is intended for scenarios such as data breach and leak investigations, credential exposure, internal fraud and bribery, sensitive data exposure in Teams, and inappropriate content investigations. Microsoft Purview Data Security Investigations (Source: Microsoft) “Investigations that once took weeks, or weren’t possible at all, can now be completed in hours. By eliminating manual effort and surfacing hidden risks across sprawling … More → The post Microsoft brings AI-powered investigations to security teams appeared first on Help Net Security.
http://news.poseidon-us.com/TQbHHv

AWS adds IPv6 support to IAM Identity Center through dual-stack endpoints

Amazon Web Services has added IPv6 support to IAM Identity Center through new dual-stack endpoints. The update allows identity services to operate over IPv6 networks while continuing to support IPv4. The change applies to access portals, managed applications, and service APIs that use dual-stack domain names capable of accepting both IPv4 and IPv6 connections. Transition from IPv4-only to dual-stack endpoints (Source: AWS) Dual-stack endpoints for workforce access Existing IPv4 endpoints remain available. Clients connect using … More → The post AWS adds IPv6 support to IAM Identity Center through dual-stack endpoints appeared first on Help Net Security.
http://news.poseidon-us.com/TQbHHs

NETSCOUT adds Wi-Fi 7 observability and real-time SSL certificate monitoring

NETSCOUT announced new capabilities that further enhance its observability solutions to address critical gaps in remote site management and risks stemming from expired SSL/TLS certificates. New nGeniusONE solution enhancements support real-time deep packet inspection (DPI) over Ethernet or Wi-Fi 7, overcoming observability gaps in remote locations and delivering superior user experiences wherever needed. And NETSCOUT’s enhanced SSL/TLS certificates monitoring capabilities simplify and expedite management, reducing the risk of outages caused by missed certificate expirations. Overcoming … More → The post NETSCOUT adds Wi-Fi 7 observability and real-time SSL certificate monitoring appeared first on Help Net Security.
http://news.poseidon-us.com/TQbHDX