433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

CyberFlex: Flexible Pen testing as a Service with EASM

About CyberFlex CyberFlex is an Outpost24 solution that combines the strengths of its Pen-testing-as-a-Service (PTaaS) and External Attack Surface Management (EASM) solutions. Customers benefit from continuous coverage of their entire attack application attack surface, while enjoying a flexible consumption model. Outpost24’s expert pen testers deliver deep, actionable insights on critical apps, with ongoing management as an extension of your security team. With a single, flexible agreement, you get fast, scalable, and business-driven pen testing, all seamlessly … More → The post CyberFlex: Flexible Pen testing as a Service with EASM appeared first on Help Net Security.
http://news.poseidon-us.com/TMt3d6

LinkedIn expands company verification, mandates workplace checks for certain roles

LinkedIn is rolling out new verification rules to make it easier to confirm that people and companies are who they claim to be. The company will now require workplace verification when someone adds or updates a leadership or recruiter role on their profile. The goal is to cut down on fake accounts and scams while helping businesses, recruiters, and professionals build credibility. Here is what’s changing: 1. Premium Company Page verification Until now, only a … More → The post LinkedIn expands company verification, mandates workplace checks for certain roles appeared first on Help Net Security.
http://news.poseidon-us.com/TMt3bq

macOS vulnerability allowed Keychain and iOS app decryption without a password

Today at Nullcon Berlin, a researcher disclosed a macOS vulnerability (CVE-2025-24204) that allowed attackers to read the memory of any process, even with System Integrity Protection (SIP) enabled. The issue stems from Apple mistakenly granting the /usr/bin/gcore utility the com.apple.system-task-ports.read entitlement in macOS 15.0 (Sequoia). Apple removed the entitlement in macOS 15.3. Koh M. Nakagawa speaking at Nullcon Berlin 2025 This entitlement gave gcore the ability to read the memory of any process on the … More → The post macOS vulnerability allowed Keychain and iOS app decryption without a password appeared first on Help Net Security.
http://news.poseidon-us.com/TMt3Tn

From CastleLoader to CastleRAT: TAG-150 Advances Operations with Multi-Tiered Infrastructure

Insikt Group reveals TAG-150’s multi-tiered infrastructure and CastleRAT malware—an advanced threat actor evolving rapidly with stealth and scale.
http://news.poseidon-us.com/TMt1DD

Sitecore zero-day vulnerability exploited by attackers (CVE-2025-53690)

A threat actor is leveraging a zero-day vulnerability (CVE-2025-53690) and an exposed sample ASP.NET machine key to breach internet-facing, on-premises deployments of several Sitecore solutions, Mandiant has revealed. About CVE-2025-53690 CVE-2025-53690 is a ViewState deserialization vulnerability that affects any version of Sitecore Experience Manager (XM), Experience Platform (XP), Experience Commerce (XC), and Managed Cloud. Deployed instances are affected by this vulnerability if they have been deployed by using a sample machine key that has been … More → The post Sitecore zero-day vulnerability exploited by attackers (CVE-2025-53690) appeared first on Help Net Security.
http://news.poseidon-us.com/TMsvTy

Transgender federal employees say they face fear and discrimination under Trump

Compared to private sector workers, transgender federal employees are especially vulnerable because many ultimately answer to the president, said Olivia Hunt. The post Transgender federal employees say they face fear and discrimination under Trump first appeared on Federal News Network.
http://news.poseidon-us.com/TMstBG

House lawmakers advance steeper IRS cuts than what Trump proposed

House lawmakers rejected the Trump administration’s request for more than $850 million to help the IRS hire an additional 11,000 call center representatives. The post House lawmakers advance steeper IRS cuts than what Trump proposed first appeared on Federal News Network.
http://news.poseidon-us.com/TMssM5

House lawmakers advance steeper IRS cuts than what Trump proposed

House lawmakers rejected the Trump administration’s request for more than $850 million to help the IRS hire an additional 11,000 call center representatives. The post House lawmakers advance steeper IRS cuts than what Trump proposed first appeared on Federal News Network.
http://news.poseidon-us.com/TMssJn

Digital maturity playbook: Strategies, tools and expert guidance

Top technology leaders from Brillient, Deloitte, Future Tech and Northrop Grumman share six insights on building resilient, mission-driven digital ecosystems. The post Digital maturity playbook: Strategies, tools and expert guidance first appeared on Federal News Network.
http://news.poseidon-us.com/TMssCS

On DoD: Army DEVCOM Analysis Center

Gain insights into how AI reliability is being tested, what partnerships are helping drive progress and how defense leaders are thinking about risk mitigation in real-world military environments. The post On DoD: Army DEVCOM Analysis Center first appeared on Federal News Network.
http://news.poseidon-us.com/TMssBQ