433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Time to restore some rationality to government purchase card policy

“One of the things I think is getting lost … is this is a program that pays for itself through the use of and the gaining of refunds,” said Shauna Weatherly. The post Time to restore some rationality to government purchase card policy first appeared on Federal News Network.
http://news.poseidon-us.com/TJd08f

Labor rallies in support of the federal workforce pop up across the country

In Atlanta, Georgia, employees from the Centers for Disease Control and Prevention are pushing back against the Trump administration’s recent actions. The post Labor rallies in support of the federal workforce pop up across the country first appeared on Federal News Network.
http://news.poseidon-us.com/TJcwj9

Report: The State of Secrets Sprawl 2025

GitGuardian’s State of Secrets Sprawl 2025 report shows no progress in combating secrets sprawl, with 23.8 million secrets leaked on public GitHub repositories in 2024—a 25% year-over-year increase. Despite GitHub Push Protection’s efforts, secrets sprawl is accelerating, especially with generic secrets, which made up 58% of all leaked credentials. More troubling, 70% of secrets leaked in 2022 remain active, significantly expanding the attack surface for threat actors. The report makes one thing clear: secrets management … More → The post Report: The State of Secrets Sprawl 2025 appeared first on Help Net Security.
http://news.poseidon-us.com/TJcvwf

Vanta strengthens collaboration between security and GRC teams

Vanta announced a series of new features and capabilities to help security and GRC teams seamlessly collaborate across their organization and extended network. These releases—including team-based collaboration and granular user access, an integrated Vanta Exchange for vendor security reviews, enhanced audit capabilities and expanded security questionnaire automation—reduce manual processes and enable companies to manage trust as a team. With 65% of businesses reporting that customers, investors and suppliers increasingly require proof of compliance, maintaining a … More → The post Vanta strengthens collaboration between security and GRC teams appeared first on Help Net Security.
http://news.poseidon-us.com/TJcvvm

APTs have been using zero-day Windows shortcut exploit for eight years (ZDI-CAN-25373)

State-sponsored threat actors and cybercrime groups from North Korea, Iran, Russia, and China have been exploiting a zero-day Windows vulnerability with no fix in sight for the last eight years, researchers with Trend Micro’s Zero Day Initiative have warned on Tuesday. The vulnerability, which doesn’t have a CVE number but is being tracked as ZDI-CAN-25373 by ZDI researchers, allowed attackers to surreptitiously execute malicious commands on a victim’s machine and deliver a variety of malware … More → The post APTs have been using zero-day Windows shortcut exploit for eight years (ZDI-CAN-25373) appeared first on Help Net Security.
http://news.poseidon-us.com/TJcvvl

1Kosmos 1Key secures shared login environments and OT systems

1Kosmos announced 1Kosmos 1Key for shared account login environments. With FIDO-compliant biometric authentication, 1Kosmos 1Key addresses the pressing need for security, accountability, and auditability in settings where multiple users access shared accounts, such as operational technology (OT) systems, hospitality services, and other collaborative workspaces. Shared accounts are commonly used in both IT and OT environments where many users interact with a single workstation or application. However, shared access can also lead to security vulnerabilities, accountability … More → The post 1Kosmos 1Key secures shared login environments and OT systems appeared first on Help Net Security.
http://news.poseidon-us.com/TJcvvk

Elastic expands partnership with Tines to scale security operations

Elastic announced an expanded partnership with an integrated offering that includes Tines Workflow Automation and the Elastic Search AI Platform to simplify security and observability workflow automation. The partnership equips security teams with security orchestration, automation and response (SOAR) and AI-driven security analytics capabilities, while observability teams benefit from enhanced incident response automation. “We’re thrilled about the Elastic and Tines partnership—it’s been a game-changer for our team and our ability to protect our vast network … More → The post Elastic expands partnership with Tines to scale security operations appeared first on Help Net Security.
http://news.poseidon-us.com/TJcvvF

The best thing about other-transaction-authority acquisitions may not be there after all

“The problem is we’re talking about billions of dollars and there has to be some oversight process because otherwise it’s just too abusable,” said Zach Prince. The post The best thing about other-transaction-authority acquisitions may not be there after all first appeared on Federal News Network.
http://news.poseidon-us.com/TJcvnd

The best thing about other-transaction-authority acquisitions may not be there after all

“The problem is we’re talking about billions of dollars and there has to be some oversight process because otherwise it’s just too abusable,” said Zach Prince. The post The best thing about other-transaction-authority acquisitions may not be there after all first appeared on Federal News Network.
http://news.poseidon-us.com/TJcvjV

CENTCOM scales its AI infrastructure, shaping future of AI for combatant commands

After launching CentGPT, Centcom found that its classified cloud infrastructure lacked the capacity to meet its growing demand for high-performance computing. The post CENTCOM scales its AI infrastructure, shaping future of AI for combatant commands first appeared on Federal News Network.
http://news.poseidon-us.com/TJctlV