433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Intruder expands cloud security with agentless container image scanning

Intruder has announced the release of Container Image Scanning, a new upgrade to its cloud security capabilities that automatically scans container images for vulnerabilities, granting customers actionable insight into container risk without deploying and maintaining scanning agents across their estates. Leveraging existing integrations with major cloud providers, Intruder supports Amazon Web Services Elastic Container Registry, Google Cloud Artifact Registry and Azure Container Registry. New images and updated versions are scanned daily for vulnerabilities, and users … More → The post Intruder expands cloud security with agentless container image scanning appeared first on Help Net Security.
http://news.poseidon-us.com/TRy06w

Advenica’s File Scanner Kiosk scans USB media for malware

Advenica announced the File Scanner Kiosk, a system that scans USB media for malware and helps businesses reduce infection risk. With the reliance on external media for file transfers, organisations face increased vulnerability to malware. The File Scanner Kiosk addresses this challenge by providing an automated, reliable, and efficient way to scan USB media for malware before they enter a secure network. The system uses advanced antivirus technologies to detect and alert users to potential … More → The post Advenica’s File Scanner Kiosk scans USB media for malware appeared first on Help Net Security.
http://news.poseidon-us.com/TRxqvx

Meta’s Muse Spark takes AI a step closer to personal superintelligence

Meta Superintelligence Labs has introduced Muse Spark, a natively multimodal reasoning model with support for tool use, visual chain of thought, and multi-agent orchestration. The release includes a Contemplating mode, which is rolling out gradually and orchestrates multiple agents that reason in parallel. Prompt: Can you turn this into a sudoku game that I can play in the web? (Source: Meta) Capabilities Meta positions Muse Spark as part of its push toward personal superintelligence that … More → The post Meta’s Muse Spark takes AI a step closer to personal superintelligence appeared first on Help Net Security.
http://news.poseidon-us.com/TRxllX

AI agent intent is a starting point, not a security strategy

In this Help Net Security video, Itamar Apelblat, CEO of Token Security, walks through findings from the company’s research, which shows that 65% of agentic chatbots have never been used yet still hold live access credentials. He explains why organizations treat AI agents more like quick experiments than governed identities, and why that creates risks similar to orphaned service accounts, only harder to see. The conversation covers why 51% of external agent actions still rely … More → The post AI agent intent is a starting point, not a security strategy appeared first on Help Net Security.
http://news.poseidon-us.com/TRxbRJ

Asqav: Open-source SDK for AI agent governance

AI agents are executing consequential tasks autonomously, often across multiple systems and with little record of what they did or why. Asqav, a Python SDK released under the MIT license, addresses that gap by attaching a cryptographic signature to each agent action and linking entries into a hash chain. The signing algorithm is ML-DSA-65, standardized under FIPS 204 and designed to remain secure against quantum computing attacks. Each signature also carries an RFC 3161 timestamp. … More → The post Asqav: Open-source SDK for AI agent governance appeared first on Help Net Security.
http://news.poseidon-us.com/TRxbRG

Phishers sneak through using GitHub and Jira’s own mail delivery infrastructure

Attackers are abusing the notification systems of SaaS platforms like GitHub and Jira to send phishing and spam emails, Cisco Talos researchers are warning. “Because the emails are dispatched from the platform’s own infrastructure, they satisfy all standard authentication requirements (SPF, DKIM, and DMARC), effectively neutralizing the primary gatekeepers of modern email security,” they note. “By decoupling the malicious intent from the technical infrastructure, attackers successfully deliver phishing content with a ‘seal of approval’ that … More → The post Phishers sneak through using GitHub and Jira’s own mail delivery infrastructure appeared first on Help Net Security.
http://news.poseidon-us.com/TRxbRD

Prompt injection tags along as GenAI enters daily government use

Routine use of GenAI has moved into daily operations in state and territorial government environments, placing new security risks within common workflows. A Center for Internet Security (CIS) report, Prompt Injections: The Inherent Threat to Generative AI, identifies prompt injection as a persistent concern tied to that adoption. Adoption expands exposure Use of AI tools has increased in government IT teams. A 2025 NASCIO survey of 51 state and territorial CIOs found that 82% reported … More → The post Prompt injection tags along as GenAI enters daily government use appeared first on Help Net Security.
http://news.poseidon-us.com/TRxbRC

BlueHammer: Windows zero-day exploit leaked

A buggy but functional proof-of-concept (PoC) exploit for an unpatched Windows local privilege escalation vulnerability dubbed BlueHammer has been published on GitHub by someone who goes by the handle Chaotic Eclipse and Nightmare Eclipse. Several security researchers have fixed the bugs in the exploit and made it work on patched Windows 10, 11, and Windows Server systems, and the question now is whether Microsoft is planning or working on a fix. The BlueHammer PoC exploit … More → The post BlueHammer: Windows zero-day exploit leaked appeared first on Help Net Security.
http://news.poseidon-us.com/TRxPxb