433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Cisco warns of SD-WAN Manager exploitation, fixes 48 firewall vulnerabilities

Cisco has confirmed that two Catalyst SD-WAN Manager vulnerabilities (CVE-2026-20128 and CVE-2026-20122) patched in late February 2025 are being exploited by attackers. The exploited vulnerabilities (CVE-2026-20128, CVE-2026-20122) CVE-2026-20128 is a bug in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager, which could allow an authenticated, local attacker to gain DCA user privileges on an affected system. “To exploit this vulnerability, the attacker must have valid vmanage credentials on the affected system,” Cisco … More → The post Cisco warns of SD-WAN Manager exploitation, fixes 48 firewall vulnerabilities appeared first on Help Net Security.
http://news.poseidon-us.com/TRJwV5

Reclaim Security secures $26 million to automate cybersecurity remediation

Reclaim Security has raised $26 million in total funding, including a recent $20 million Series A round led by Acrew Capital, with participation from QP Ventures and Ibex Investors. The funding will accelerate the company’s mission to eliminate what many security leaders consider cybersecurity’s most persistent gap: remediation. As attacker breakout times have fallen to as little as 27 seconds, enterprises still require an average of 27 days to remediate critical exposures. Over the past … More → The post Reclaim Security secures $26 million to automate cybersecurity remediation appeared first on Help Net Security.
http://news.poseidon-us.com/TRJwTT

That attractive online ad might be a malware trap

Malware increasingly travels through the infrastructure that delivers online advertising. The Media Trust’s Global Report on Digital Trust, Ad Integrity, and the Protection of People describes a digital ad ecosystem where scam campaigns, malicious redirects, and malware delivery appear alongside marketing traffic. The financial impact of these threats continues to grow. Estimated consumer and business losses in the United States tied to malware, scams, and ad-borne fraud exceeded $12.5 billion in 2025. Exposure also remains … More → The post That attractive online ad might be a malware trap appeared first on Help Net Security.
http://news.poseidon-us.com/TRJp9h

FreeScout vulnerability enables unauthenticated, zero-click RCE via email (CVE-2026-28289)

A newly discovered vulnerability (CVE-2026-28289) in the open-source help desk platform FreeScout could allow attackers to take over vulnerable servers by sending a specially crafted email to a FreeScout mailbox. CVE-2026-28289 exploitation FreeScout is a free, open-source help desk and shared inbox system used by businesses or teams to manage customer support conversations in one place. It is built with PHP (Laravel) and MySQL, and it’s designed to be self-hosted – either on-premises, on a … More → The post FreeScout vulnerability enables unauthenticated, zero-click RCE via email (CVE-2026-28289) appeared first on Help Net Security.
http://news.poseidon-us.com/TRJgfh

Google changes Play Store policies after settling Epic Games dispute

Google is making changes to the Play Store after settling its legal fight with Epic Games, focusing on three areas: more billing options, lower fees with new programs for developers, and a program for registered app stores. The rollout begins in the European Economic Area, the United Kingdom and the United States by June 30, 2026. Australia follows in September, while Japan and South Korea receive the changes by the end of 2026. The rest … More → The post Google changes Play Store policies after settling Epic Games dispute appeared first on Help Net Security.
http://news.poseidon-us.com/TRJgcy

Beazley Exposure Management platform identifies external exposures and prioritizes cyber risk

Beazley Security has announced its Exposure Management product, which delivers continuous, automated discovery and intelligence-driven exposure notifications to help security teams accelerate risk mitigation in an era where AI-assisted attackers have compressed the time between vulnerability disclosure, weaponization, and exploitation. The product, validated with clients over the past eight months, is the first in an expanding suite of capabilities targeting internal and external exposures, third-party supplier risks, and leaked credentials that may be available on … More → The post Beazley Exposure Management platform identifies external exposures and prioritizes cyber risk appeared first on Help Net Security.
http://news.poseidon-us.com/TRJbXR

LeakBase cybercrime forum with 142,000 users taken down in global operation

LeakBase, an open-web cybercrime forum facilitating the trade of leaked databases and “stealer logs” containing stolen credentials, has been taken down in an international law enforcement operation coordinated by Europol and involving authorities from 14 countries. Police in action (Source: Europol) Active since 2021, LeakBase hosted a large archive of breached databases and compromised credentials used to facilitate account takeover, fraud and further cyber intrusions. By December 2025, the forum had more than 142,000 registered … More → The post LeakBase cybercrime forum with 142,000 users taken down in global operation appeared first on Help Net Security.
http://news.poseidon-us.com/TRJWbf

Authorities pull plug on Tycoon 2FA phishing-as-a-service platform

Tycoon 2FA, a phishing-as-a-service platform that allowed cybercriminals to bypass MFA and break into online accounts, has been disrupted by law enforcement agencies and cybersecurity partners. Takedown of the Tycoon 2FA phishing-as-a-service platform (Source: Europol) Active since August 2023, Tycoon 2FA was among the largest phishing operations worldwide. At its peak, the platform accounted for about 62% of phishing attempts blocked by Microsoft, according to investigators. The service operated on a subscription model and gave … More → The post Authorities pull plug on Tycoon 2FA phishing-as-a-service platform appeared first on Help Net Security.
http://news.poseidon-us.com/TRJWZW

As AI agents start making purchases, security teams must rethink risk

In this Help Net Security interview, Donald Kossmann, CTO at fintech company Chargebacks911, talks about the emerging security, fraud, and governance risks of “agentic commerce,” where AI agents can autonomously make purchasing decisions on behalf of users or organizations. He explains that as AI agents gain the ability to shop, negotiate prices, select suppliers, and execute transactions independently, traditional assumptions about digital commerce begin to break down. What is the most underappreciated security assumption people … More → The post As AI agents start making purchases, security teams must rethink risk appeared first on Help Net Security.
http://news.poseidon-us.com/TRJPjy