Blog

Stealthy new backdoor surfaces in attacks on multiple sectors

A relatively new backdoor called Mistic has been deployed in multiple attacks since April 2026 targeting organizations in the insurance, education, IT, and professional services sectors, according to Symantec. The malware appears to be associated with Woodgnat, also known as KongTuke, a financially motivated initial access broker (IAB) active since at least May 2024 that has been connected to ransomware operations including Qilin, Interlock, Rhysida, Akira, 8Base, and Black Basta. “Woodgnat reportedly functions primarily as … More → The post Stealthy new backdoor surfaces in attacks on multiple sectors appeared first on Help Net Security.
http://news.poseidon-us.com/TTCgtV

Checksum API Agent generates and maintains stateful API tests

Checksum has launched the API Agent, a continuous testing agent that generates and maintains journey-based tests for backend APIs. The agent builds multi-step tests that mirror how a product actually uses its API, keeps them current as the API changes, and runs them in a team’s existing pipeline. It closes the gap that opens when AI coding tools add endpoints faster than engineers can write tests to cover them. Spec-based generators stop at the endpoint. … More → The post Checksum API Agent generates and maintains stateful API tests appeared first on Help Net Security.
http://news.poseidon-us.com/TTCgs5

Reco Agent Security helps organizations govern AI agents and reduce exposure

Reco announced Reco Agent Security, which expands the Reco Platform with advanced capabilities that prevent data exposure, unintended use and process disruption caused by AI agents operating across connected applications and workflows. Agents function inside interconnected enterprise ecosystems where they can read sensitive data, invoke tools, trigger workflows, update records, communicate with other systems and take autonomous action. Agent security risks, therefore, are not isolated to the agent itself, but rather extend to the applications … More → The post Reco Agent Security helps organizations govern AI agents and reduce exposure appeared first on Help Net Security.
http://news.poseidon-us.com/TTCb1j

Mitiga unveils Agentic Runtime Security for cloud, SaaS, identity, and AI protection

Mitiga has announced Agentic Runtime Security, a new approach to runtime detection and response across cloud, SaaS, identity, AI, and third-party services that anticipates, detects, interrupts, and stops active attacks before they impact the business. For two decades, security operations centered on the endpoint. EDR carried the load, most detections were built there, and most analyst muscle memory lived there. But the primary asset is no longer the server – it’s third-party services, cloud, SaaS, … More → The post Mitiga unveils Agentic Runtime Security for cloud, SaaS, identity, and AI protection appeared first on Help Net Security.
http://news.poseidon-us.com/TTCb1g

ControlMonkey connects backup visibility with cloud recovery readiness

ControlMonkey announced its Data Backup Correlation, a new capability that extends its Cyber Resilience Platform by connecting data backup posture with cloud configuration recovery. The first release supports AWS Backup and Azure Backup. CISOs and cloud teams often lack full visibility into data backup coverage and available recovery points across critical data sources, including databases, storage accounts, and cloud data services, making it harder to understand what data assets are actually recoverable when it matters … More → The post ControlMonkey connects backup visibility with cloud recovery readiness appeared first on Help Net Security.
http://news.poseidon-us.com/TTCb10