433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Apple fixes iPhone bug that let FBI retrieve deleted Signal messages(CVE-2026-28950)

Apple has rolled out security updates for iPhones and iPads that fix CVE-2026-28950, a logging issue in Notification Services that made devices unexpectedly retain notifications marked for deletion. The vulnerability was patched following a recent report about the FBI accessing a suspect’s Signal message notification content on their iPhone, despite Signal being deleted from the device. As usual, Apple did not offer more details about the flaw; it just said that the issue was addressed … More → The post Apple fixes iPhone bug that let FBI retrieve deleted Signal messages(CVE-2026-28950) appeared first on Help Net Security.
http://news.poseidon-us.com/TSBB65

GopherWhisper APT group hides command and control traffic in Slack and Discord

Attackers continue to lean on everyday collaboration platforms to hide command and control traffic inside normal enterprise noise. A newly identified China-aligned APT group pushes that trend further, running its operations through Slack workspaces, Discord servers, Outlook drafts, and the file.io sharing service. GopherWhisper toolset overview ESET researchers have named the group GopherWhisper and tied it to an intrusion at a Mongolian governmental entity. The name draws on two elements: most of the group’s tooling … More → The post GopherWhisper APT group hides command and control traffic in Slack and Discord appeared first on Help Net Security.
http://news.poseidon-us.com/TSB5Mq

OpenAI tackles a bad habit people have when interacting with AI

Since people tend to paste personal data into AI tools such as ChatGPT, OpenAI has released Privacy Filter, an open-weight model designed to detect and redact personally identifiable information (PII) in text. The model is available under the Apache 2.0 license on Hugging Face and GitHub. “This release is part of our broader effort to support a more resilient software ecosystem by providing developers with practical infrastructure for building with AI safely, including tools and … More → The post OpenAI tackles a bad habit people have when interacting with AI appeared first on Help Net Security.
http://news.poseidon-us.com/TSB30P

This new brain-like chip could slash AI energy use by 70%

A breakthrough in brain-inspired computing could make today’s energy-hungry AI systems far more efficient. Researchers have engineered a new nanoelectronic device using a modified form of hafnium oxide that mimics how neurons process and store information at the same time. Unlike conventional chips that waste energy moving data back and forth, this device operates with ultra-low power—potentially slashing energy use by up to 70%.
http://news.poseidon-us.com/TS9ysk

A year in, Zoom’s CISO reflects on balancing security and business

In this Help Net Security interview, Sandra McLeod, CISO at Zoom, reflects on her first year in the role. She talks about moving from reactive firefighting to business strategy, and what she heard from engineers, the board, and customers during her early months. McLeod discusses how she prepared for incident management, the dual job of handling crises and explaining them afterward, and her experience as a woman in technical leadership at Zoom. She closes with … More → The post A year in, Zoom’s CISO reflects on balancing security and business appeared first on Help Net Security.
http://news.poseidon-us.com/TS9wJr

Scenario: Open-source framework for automated AI app red-teaming

Enterprises running customer service bots, data analytics agents, and other AI-driven applications in production handle sensitive records and connect to core business systems every day. LangWatch has released Scenario, an open-source framework that runs automated red-team exercises against AI agents using multi-turn attack techniques that mirror how adversaries operate in the wild. Multi-turn attacks replace single-shot testing Single-prompt penetration tests have long been the standard approach for probing LLMs. Models often hold firm against a … More → The post Scenario: Open-source framework for automated AI app red-teaming appeared first on Help Net Security.
http://news.poseidon-us.com/TS9wGy

GDPR works, but only where someone enforces it

A new measurement study of web tracking across ten countries offers a reality check for anyone working on privacy compliance. Researchers crawled the same set of globally popular websites from virtual machines located in Australia, Brazil, Canada, Germany, India, Singapore, South Africa, South Korea, Spain, and California. The results show that European privacy law does reduce tracking, and that most of the reduction happens in the two jurisdictions where regulators bring cases. The headline numbers … More → The post GDPR works, but only where someone enforces it appeared first on Help Net Security.
http://news.poseidon-us.com/TS9v4w

Ransomware, fraud, and lawsuits drive cyber insurance claims to new peaks

The 2026 InsurSec Report from At-Bay, covering more than 100,000 policy years of claims data, documents a 7% year-over-year rise in overall claim frequency and an all-time high average severity of $221,000. Ransomware severity reached $508,000, up 16% from the prior year, making it the costliest incident type by a wide margin. Remote access weaknesses dominate ransomware entry Remote access services served as the entry point for 87% of ransomware claims in 2025, up from … More → The post Ransomware, fraud, and lawsuits drive cyber insurance claims to new peaks appeared first on Help Net Security.
http://news.poseidon-us.com/TS9v44