433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Network segmentation projects fail in predictable patterns

Most enterprise networks have segmentation on the roadmap. Many have had it there for years. A survey of 400 U.S.-based network security practitioners who lived through failed segmentation projects finds that failure clusters into four distinct patterns, and the type of failure a team experiences depends heavily on the kind of environment and approach they attempted. The research, conducted in early 2026, applied latent class analysis to survey responses measuring both general IT project failure … More → The post Network segmentation projects fail in predictable patterns appeared first on Help Net Security.
http://news.poseidon-us.com/TS2jtJ

Microsoft ends desktop detour for sensitivity labels in Office web apps

Microsoft is rolling out an update to Office for the web that removes a long-standing limitation around document protection, adding new control to browser-based apps. Specifying users in the Permissions dialog (Source: Microsoft) Users can now apply sensitivity labels with user-defined permissions directly in the web versions of Word, Excel, and PowerPoint. The change brings the web apps in line with capabilities that were previously limited to desktop versions. Previously, browser-based users could only open … More → The post Microsoft ends desktop detour for sensitivity labels in Office web apps appeared first on Help Net Security.
http://news.poseidon-us.com/TS2ZpV

OpenSSL 4.0.0 release cuts deprecated protocols and gains post-quantum support

OpenSSL 4.0.0 removes several long-deprecated features, adds support for Encrypted Client Hello, and introduces API-level changes that will require code updates for applications built against older versions. SSLv3, SSLv2 client hello, and engines are gone SSLv3 support has been removed. The protocol was deprecated in 2015, and OpenSSL had it disabled by default since version 1.1.0 in 2016. Support for the SSLv2 Client Hello has also been removed. The engine API, which provided a mechanism … More → The post OpenSSL 4.0.0 release cuts deprecated protocols and gains post-quantum support appeared first on Help Net Security.
http://news.poseidon-us.com/TS2Hgf

Testing reveals Claude Mythos’s offensive capabilities and limits

Could Claude Mythos Preview, Anthropic’s latest large language model, be leveraged for fully automated cyber attacks? The UK government’s AI Security Institute (AISI) tested its capability to successfully engage in capture-the-flag (CTF) challenges and multi-step attack scenarios, and found that that while its cybersecurity capabilities exceed those of previously available models, it can’t reliably execute autonomous attacks on hardened networks. What is Claude Mythos Preview? Anthropic introduced Claude Mythos Preview to the public earlier this … More → The post Testing reveals Claude Mythos’s offensive capabilities and limits appeared first on Help Net Security.
http://news.poseidon-us.com/TS2Hfs

W3LL phishing service sold for $500 dismantled by the FBI

The W3LL phishing kit, a cybercrime tool used to impersonate legitimate login pages and steal usernames and passwords, has been dismantled by the FBI and Indonesian law enforcement authorities. Officials estimate the operation was tied to more than $20 million in attempted fraud. (Source: FBI) “For a fee of about $500, users could purchase access to the phishing kit and deploy fake websites designed to look nearly identical to trusted login portals,” the FBI said. … More → The post W3LL phishing service sold for $500 dismantled by the FBI appeared first on Help Net Security.
http://news.poseidon-us.com/TS2BWX

Claroty advances CPS security with Visibility Orchestration in xDome

Claroty has revealed new Visibility Orchestration capabilities in its Saas offering Claroty xDome, transforming visibility from a vague concept into a quantifiable measurement that proves the value of a strong CPS protection program. Visibility Orchestration elevates organizations across the industrial, healthcare, commercial, and public sectors to a high-fidelity understanding of their CPS environments, enabling measurable, actionable improvements in data quality and security posture and safely orchestrated risk reduction. The rising threat of visibility blind spots … More → The post Claroty advances CPS security with Visibility Orchestration in xDome appeared first on Help Net Security.
http://news.poseidon-us.com/TS2BWR

Oligo enables real-time exploit detection and blocking at application runtime

Oligo Security has unveiled Runtime Exploit Blocking, a new capability that stops exploit attempts at the application layer in real time. By providing visibility into how applications execute and behave, Oligo identifies and blocks malicious activity at the point of execution, without killing containers or processes, or impacting the application. Attackers rely on repeatable exploit techniques to infiltrate organizations, with Mandiant reporting that exploitation has remained the leading initial access vector for six consecutive years. … More → The post Oligo enables real-time exploit detection and blocking at application runtime appeared first on Help Net Security.
http://news.poseidon-us.com/TS2BVD