433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Democratic leaders want answers about DOGE’s activities at Social Security

The senator’s push comes after reports that DOGE’s access to Social Security systems put Americans’ personal information at risk.
http://news.poseidon-us.com/TRT5hL

Accertify’s Attack State targets credential stuffing and ATO attacks

Accertify has announced the launch of Attack State, a new capability in its Account Protection solution designed to help organizations detect and respond to coordinated login attacks and other automated threats targeting customer accounts. Attack State analyzes login activity continuously and compares it to the organization’s broader traffic patterns to determine when a client’s environment may be under active attack. By comparing expected network behavior with real-time activity, the capability identifies anomalies associated with bot-driven … More → The post Accertify’s Attack State targets credential stuffing and ATO attacks appeared first on Help Net Security.
http://news.poseidon-us.com/TRT1CC

EU Parliament backs extension of CSAM detection rules until 2027

The European Parliament has voted to extend a temporary exemption to EU privacy legislation that allows online platforms to voluntarily detect child sexual abuse material (CSAM). The extension prolongs a derogation from the EU’s ePrivacy Directive, which was set to expire on 3 April 2026, until 3 August 2027. Lawmakers say the additional time will allow the EU to negotiate and adopt a permanent legal framework to prevent and combat child sexual abuse online. Members … More → The post EU Parliament backs extension of CSAM detection rules until 2027 appeared first on Help Net Security.
http://news.poseidon-us.com/TRT19l

Authorities dismantle SocksEscort proxy network behind millions in fraud

SocksEscort, a residential proxy network used to exploit thousands of compromised home routers worldwide and facilitate large-scale fraud that cost victims millions of dollars, has been disrupted in an international law enforcement operation led by the U.S. Department of Justice. The domain seizure notice Law enforcement agencies seized 34 domains and 23 servers located in seven countries during the operation, Europol said. U.S. authorities also froze about $3.5 million in cryptocurrency linked to the network. … More → The post Authorities dismantle SocksEscort proxy network behind millions in fraud appeared first on Help Net Security.
http://news.poseidon-us.com/TRSvKx

BioCatch DeviceIQ helps banks spot risky devices before login

BioCatch has announced the launch of DeviceIQ, a comprehensive new device identification and intelligence product that transforms how financial institutions evaluate the trustworthiness of devices used for digital banking. Traditional device identification has grown increasingly unreliable. Criminals utilize sophisticated evasion techniques (emulators, device spoofing, cloaked browsers, jailbroken devices, and data-wiping) to commit fraud repeatedly from the same physical devices. New technologies like agentic browsers add another layer of complexity by separating a user’s actions from … More → The post BioCatch DeviceIQ helps banks spot risky devices before login appeared first on Help Net Security.
http://news.poseidon-us.com/TRSpPT

Red Access firewall-native SSE adds GenAI security and browser protection to existing firewalls

Red Access has announced firewall-native SSE, an agentless cloud layer that instantly upgrades any existing firewall with Security Service Edge (SSE), GenAI security, and browser-agnostic protection. Deployed directly on top of existing architecture, the firewall-native SSE eliminates the need for rip-and-replace projects, accelerating deployment while reducing operational overhead without compromising user experience. “Secure enterprise browsing solutions sit at the intersection of user, device, and web resources to enforce security policies,” said Andrew Green, Networking & … More → The post Red Access firewall-native SSE adds GenAI security and browser protection to existing firewalls appeared first on Help Net Security.
http://news.poseidon-us.com/TRSjp2

AI coding agents keep repeating decade-old security mistakes

Coding agents are now writing production features on real development teams, and a new report from DryRun Security shows that those agents introduce security vulnerabilities at a high rate across nearly every type of application they build. “AI coding agents can produce working software at incredible speed, but security isn’t part of their default thinking,” said James Wickett, CEO of DryRun Security. “In our usage and experience, AI coding agents often missed adding security components … More → The post AI coding agents keep repeating decade-old security mistakes appeared first on Help Net Security.
http://news.poseidon-us.com/TRSjn6

A React-based phishing page with credential exfiltration via EmailJS, (Fri, Mar 13th)

On Wednesday, a phishing message made its way into our handler inbox that contained a fairly typical low-quality lure, but turned out to be quite interesting in the end nonetheless. That is because the accompanying credential stealing web page was dynamically constructed using React and used a legitimate e-mail service for credential collection.
http://news.poseidon-us.com/TRSh73