433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

CISA sounds alarm on Langflow RCE, Trivy supply chain compromise after rapid exploitation

The US Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities catalog: CVE-2026-33017, a recently disclosed code injection vulnerability in Langflow, an open-source framework for building AI agents and workflows, and CVE-2026-33634, an embedded malicious code vulnerability in Aqua Security’s Trivy security scanner. Their addition to the catalog means that US federal civilian agencies are required to address the flaws within their networks by April 8 and 9, … More → The post CISA sounds alarm on Langflow RCE, Trivy supply chain compromise after rapid exploitation appeared first on Help Net Security.
http://news.poseidon-us.com/TRkR0M

Ajax data breach exposed season tickets, supporter bans open to tampering

AFC Ajax, the Dutch football club from Amsterdam, disclosed that an unknown hacker gained access to parts of its IT systems and obtained the email addresses of a few hundred people. The hack exploited vulnerabilities in Ajax’s app and website, including exposed APIs and shared access keys. The club stated that names, email addresses, and dates of birth were accessed for fewer than 20 individuals subject to a stadium ban. An RTL journalist, who was … More → The post Ajax data breach exposed season tickets, supporter bans open to tampering appeared first on Help Net Security.
http://news.poseidon-us.com/TRkQzG

Senate approves funding for TSA and most of Homeland Security, but not immigration enforcement

The Senate early Friday approved Homeland Security funds for Transportation Security Administration and most other agencies, but not the immigration operations at the heart of the budget impasse. The deal, which was approved without a roll-call vote, goes next to the House, which is expected to consider it Friday. It’s a potential endgame to the 42-day shutdown has jammed airports, disrupted travel and imposed financial hardship on workers. President Donald Trump said he will sign an order instructing the Homeland Security secretary to immediately pay TSA workers, but if the bill becomes law that won’t be needed. Democrats have been demanding changes to rein in Trump’s immigration enforcement operations.
http://news.poseidon-us.com/TRkQdK

AI frenzy feeds credential chaos, secrets leak through code, tools, and infrastructure

Code keeps moving through pipelines, and credentials continue to surface alongside it. GitGuardian’s State of Secrets Sprawl 2026 puts the count at 28.65 million new hardcoded secrets in public GitHub commits in 2025, extending a multi-year rise in exposed access keys, tokens, and passwords. Public and internal repositories that contain at least one secret (Source: GitGuardian) Exposure is spreading beyond code The problem no longer exists only in public repositories, since internal environments carry a … More → The post AI frenzy feeds credential chaos, secrets leak through code, tools, and infrastructure appeared first on Help Net Security.
http://news.poseidon-us.com/TRkJ5T

Scientists create clear nail polish that lets you use touchscreens with long nails

Using a smartphone with long nails can be frustrating, forcing people to awkwardly tap with their fingertips instead of their nails. Now, researchers are working on a clear nail polish that could change that by turning fingernails into touchscreen-friendly tools. By experimenting with dozens of formulas, they discovered that combining common compounds like taurine and ethanolamine can help nails carry just enough electrical charge for screens to detect a touch.
http://news.poseidon-us.com/TRkCKn

AI for nuclear energy: Powering an intelligent, resilient future

To break the infrastructure bottleneck and shift the industry from ambition to delivery, Microsoft is announcing an AI for nuclear collaboration with NVIDIA, to provide end-to-end tools that streamline permitting, accelerate design, and optimize operations across the industry. The post AI for nuclear energy: Powering an intelligent, resilient future appeared first on Microsoft Azure Blog.
http://news.poseidon-us.com/TRk9Xl

Make OpenAI’s models misbehave and earn a reward

OpenAI’s public Safety Bug Bounty program focuses on AI abuse and safety risks across its products. The goal is to support safe and secure systems and reduce the risk of misuse that could lead to harm. This program complements the Security Bug Bounty. It accepts reports of abuse and safety risks that do not meet the criteria for a security vulnerability. Submissions are reviewed by teams from both programs based on scope and ownership. Safety … More → The post Make OpenAI’s models misbehave and earn a reward appeared first on Help Net Security.
http://news.poseidon-us.com/TRk6WH