433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Bitsight Brand Intelligence uses AI to detect and takedown impersonation attacks

Bitsight released Bitsight Brand Intelligence, a new module in its cyber threat intelligence application, to empower security and risk teams to detect, triage, and take down brand and executive threats across social media and the open, deep, and dark web. Impersonation and social engineering attacks, like phishing and similar techniques, are more pervasive than ever. Fueled by AI, cybercriminals are increasingly posing as trusted brands and executives across email, social media, and chat. 51% of … More → The post Bitsight Brand Intelligence uses AI to detect and takedown impersonation attacks appeared first on Help Net Security.
http://news.poseidon-us.com/TNh2dw

New Jscrambler AI Assistant accelerates PCI DSS compliance decisions

Jscrambler announced the AI Assistant for PCI DSS script authorization workflows, which delivers context-rich insights and expert recommendations to enable prompt and confident script authorization decisions and justifications. PCI DSS v4 requirements 6.4.3 and 11.6.1 mandate the inventorying, authorizing, and monitoring of scripts on payment pages, along with tamper-detection mechanisms to combat e-skimming threats. Despite becoming mandatory on March 31, adoption of these requirements has varied widely. To date, many organizations are investing in client-side … More → The post New Jscrambler AI Assistant accelerates PCI DSS compliance decisions appeared first on Help Net Security.
http://news.poseidon-us.com/TNh2dk

A safer way to break industrial systems (on purpose)

Cybersecurity teams often struggle to test defenses for industrial control systems without risking disruption. A group of researchers from Curtin University has developed a way to make that easier. Their work introduces a container-based framework that lets researchers and practitioners simulate real control system environments and run cyberattacks on them safely. Industrial control systems (ICS) run everything from water treatment plants to power grids. Because they manage physical processes, testing them directly can be risky. … More → The post A safer way to break industrial systems (on purpose) appeared first on Help Net Security.
http://news.poseidon-us.com/TNh2dV

Maltrail: Open-source malicious traffic detection system

Maltrail is an open-source network traffic detection system designed to spot malicious or suspicious activity. It works by checking traffic against publicly available blacklists, as well as static lists compiled from antivirus reports and user-defined sources. These “trails” can include domain names, URLs, IP addresses, or even HTTP User-Agent values. On top of that, Maltrail can use optional heuristic methods to identify new or unknown threats, such as emerging malware. Maltrail follows a Traffic -> … More → The post Maltrail: Open-source malicious traffic detection system appeared first on Help Net Security.
http://news.poseidon-us.com/TNh2dQ

Building trust in AI-powered security operations

In this Help Net Security video, James Hodge, VP, Global Specialist Organisation at Splunk, explores the transformative role of AI in cybersecurity threat detection. He explains how AI’s ability to process vast amounts of data and detect anomalies faster than humans is reshaping how organizations identify and respond to threats. Hodge highlights the explosive growth of machine data, which is projected to drive 55% of all data expansion by 2028, and discusses the need for … More → The post Building trust in AI-powered security operations appeared first on Help Net Security.
http://news.poseidon-us.com/TNh2c0

Clipboard Pictures Exfiltration in Python Infostealer, (Wed, Oct 15th)

For a while, clipboard content has been monitored by many infostealers. Purposes can be multiple, like simply searching and exfiltrating juicy data or on-the-fly modification like crypto-wallet swapping[1]. Note that the clipboard is a major risk when you don't disable clipboard sharing between your virtual machines and hosts. A malware running in a sandbox will access your (host) clipboard without problem!
http://news.poseidon-us.com/TNgzzB

The diagnosis is in: Mobile health apps are bad for your privacy

Sensitive data is moving through Android healthcare apps without adequate protection. Researchers found that many transmit information without encryption, store files without safeguards, or share it through third-party components. Study design showing data collection, static security analysis (MobSF, RiskInDroid, OWASP), and sentiment-based review analysis How the study worked The methodology followed three phases: data collection, security and privacy testing, and user experience analysis. To gather the sample, the team used twenty targeted search terms on … More → The post The diagnosis is in: Mobile health apps are bad for your privacy appeared first on Help Net Security.
http://news.poseidon-us.com/TNgy3p

The power grid is getting old, and so is the cybersecurity protecting it

Critical infrastructure is getting older, and the cost of that decay is starting to show. The Arthur D. Little Built to Last? report says that the systems powering energy, water, and transport are reaching the end of their design life. Old systems, new risks Much of the world’s infrastructure was built between the 1950s and 1970s. In the United States, nearly 70% of the power grid is over 25 years old, and about one third … More → The post The power grid is getting old, and so is the cybersecurity protecting it appeared first on Help Net Security.
http://news.poseidon-us.com/TNgy3M

Case challenging Trump administration’s shutdown layoffs faces a judge

The administration sent RIF notices to more than 4,000 federal employees last week. The post Case challenging Trump administration’s shutdown layoffs faces a judge first appeared on Federal News Network.
http://news.poseidon-us.com/TNgp85