433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Bug in widely used VoIP phones allows stealthy network footholds, call interception (CVE-2026-2329)

A critical security vulnerability (CVE-2026-2329) in Grandstream VoIP phones could let hackers remotely take full control of the devices and even intercept calls, Rapid7 researchers discovered. “The vulnerability is present in the device’s web-based API service, and is accessible in a default configuration,” Rapid7 researcher Stephen Fewer noted. The risks related to CVE-2026-2329 exploitation CVE-2026-2329 stems from improper bounds checking in a web management endpoint. An attacker can send a specially crafted request to the … More → The post Bug in widely used VoIP phones allows stealthy network footholds, call interception (CVE-2026-2329) appeared first on Help Net Security.
http://news.poseidon-us.com/TR315K

PromptSpy: First Android malware to use generative AI in its execution flow

ESET researchers have discovered PromptSpy, the first known Android malware to abuse generative AI as part of its execution flow in order to achieve persistence. This marks the first time generative AI has been deployed in this way. Because the attackers rely on prompting an AI model, specifically Google’s Gemini, to guide malicious UI manipulation, ESET has named this malware family PromptSpy. The malware can capture lockscreen data, block uninstallation attempts, gather device information, take … More → The post PromptSpy: First Android malware to use generative AI in its execution flow appeared first on Help Net Security.
http://news.poseidon-us.com/TR313t

Men sentenced to 8 years in $1.3 million computer intrusion and tax fraud scheme

Matthew A. Akande, a Nigerian national, was sentenced by a U.S. District Court to eight years in prison, followed by three years of supervised release, for his role in a scheme to break into Massachusetts tax preparation firms’ computer networks and file fraudulent tax returns. The operation generated over $1.3 million in fraudulent tax refunds. “Between in or about June 2016 and June 2021, Akande worked with others to steal money from the United States … More → The post Men sentenced to 8 years in $1.3 million computer intrusion and tax fraud scheme appeared first on Help Net Security.
http://news.poseidon-us.com/TR2v7D

UK sounds alarm on rising cyber risks to businesses

The UK government launched a national campaign urging businesses to strengthen basic cyber defenses. The initiative follows new figures highlighting the scale of the threat. Serious cyber incidents cost businesses an average of £195,000, with about half of small firms experiencing one in the past 12 months, officials say. “No business is out of reach from cyber criminals. SMEs play a vital role in our economy, and business owners work incredibly hard to build something … More → The post UK sounds alarm on rising cyber risks to businesses appeared first on Help Net Security.
http://news.poseidon-us.com/TR2v6c

Microsoft signals breakthrough in data storage that can last for generations

Microsoft announced progress on Project Silica, its research initiative focused on developing durable, long-term quartz glass-based data storage technology. Close up of Writer showing high-speed multi-beam data encoding on laser pulses (Source: Microsoft) Rising global data volumes increase the need for storage that can last for generations. Researchers believe this technology could preserve information for up to 10,000 years. “We’re rethinking how large-scale storage systems are built to make use of the properties of glass … More → The post Microsoft signals breakthrough in data storage that can last for generations appeared first on Help Net Security.
http://news.poseidon-us.com/TR2mDn

Open-source benchmark EVMbench tests how well AI agents handle smart contract exploits

Smart contract exploits continue to drain funds from blockchain projects, even as auditing tools and bug bounty programs grow. The problem is tied to how Ethereum Virtual Machine (EVM) contracts work: code is deployed permanently, runs autonomously, and often controls large pools of assets. That environment has created demand for better ways to measure whether AI systems can reliably detect, patch, and exploit vulnerabilities in contract code. EVMbench is a new open-source benchmark designed to … More → The post Open-source benchmark EVMbench tests how well AI agents handle smart contract exploits appeared first on Help Net Security.
http://news.poseidon-us.com/TR2mDl

Redpanda brings identity, policy control, and data governance to AI agents

Redpanda announced the availability of new core capabilities in the Redpanda Agentic Data Plane (ADP), including a centralized AI gateway, AI observability and evaluation via OpenTelemetry, AI agents, and unified authentication and authorization. Together, these features form a unified governance layer that allows enterprises to securely connect AI agents and Model Context Protocol (MCP) servers to live enterprise data with visibility and control. As organizations move from AI experimentation to production, the challenge has shifted … More → The post Redpanda brings identity, policy control, and data governance to AI agents appeared first on Help Net Security.
http://news.poseidon-us.com/TR2mDk

Protectt.ai enhances AppProtectt with advanced RASP and AI-driven mobile threat protection

Protectt.ai has launched the latest version of AppProtectt, its mobile application security solution featuring advanced Runtime Application Self-Protection (RASP) and AI-led behavioral monitoring. Protectt.ai works with leading banking, financial services, insurance, and digital-first enterprises to secure high-risk mobile applications against fraud, tampering, and emerging cyber threats. The latest release introduces enhanced runtime protection capabilities and intelligent, policy-driven controls designed to help organizations across the Middle East deliver secure, compliant, and resilient mobile app experiences. As … More → The post Protectt.ai enhances AppProtectt with advanced RASP and AI-driven mobile threat protection appeared first on Help Net Security.
http://news.poseidon-us.com/TR2mDc