433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

SolarWinds fixes critical Web Help Desk RCE vulnerabilities, upgrade ASAP!

SolarWinds has fixed six critical and high-severity vulnerabilities in its popular Web Help Desk (WHD) support ticketing and asset management solution, and is urging customers to upgrade to v2026.1 as soon as possible. The vulnerabilities The WHD vulnerabilities fixed were unearthed by Jimi Sebree from Horizon3.ai and Piotr Bazydlo from watchTowr. Sebree flagged a security control bypass flaw (CVE-2025-40536), hardcoded/static credentials (CVE-2025-40537), and an untrusted data deserialization vulnerability (CVE-2025-40551). While the first two may allow … More → The post SolarWinds fixes critical Web Help Desk RCE vulnerabilities, upgrade ASAP! appeared first on Help Net Security.
http://news.poseidon-us.com/TQdKT2

Dynatrace RUM delivers end-to-end visibility for cloud-native and AI-powered user experiences

Dynatrace announced next-generation Real User Monitoring (RUM) capabilities that deliver unified insights across web and mobile applications. RUM has become essential to understanding how applications perform for real users. But as organizations shift to dynamic, cloud-native, and AI-driven architectures, including LLM-powered services, traditional RUM tools are struggling to keep pace. Legacy approaches often miss critical behaviors in single-page applications (SPAs), asynchronous rendering, and soft navigations, leaving gaps in understanding. These blind spots hinder developers, SREs, … More → The post Dynatrace RUM delivers end-to-end visibility for cloud-native and AI-powered user experiences appeared first on Help Net Security.
http://news.poseidon-us.com/TQdFg1

Open-source malware zeroes in on developer environments

Open source malware activity during 2025 concentrated on a single objective: executing code inside developer environments, according to Sonatype. The focus reflected a broader shift in supply chain attacks away from end users and toward the tools, machines, and pipelines used to build software in the first place. Key takeaways (Source: Sonatype) Malware campaigns scaled through registries Researchers identified more than 450,000 new malicious open source components during the year. Attackers published large batches of … More → The post Open-source malware zeroes in on developer environments appeared first on Help Net Security.
http://news.poseidon-us.com/TQdBZG

Hottest cybersecurity open-source tools of the month: January 2026

This month’s roundup features exceptional open-source cybersecurity tools that are gaining attention for strengthening security across various environments. OpenAEV: Open-source adversarial exposure validation platform OpenAEV is an open source platform designed to plan, run, and review cyber adversary simulation campaigns used by security teams. The project focuses on organizing exercises that blend technical actions with operational and human response elements, all managed through a single system. StackRox: Open-source Kubernetes security platform Security teams spend a … More → The post Hottest cybersecurity open-source tools of the month: January 2026 appeared first on Help Net Security.
http://news.poseidon-us.com/TQd81V

A practical take on cyber resilience for CISOs

In this Help Net Security video, Shebani Baweja, CISO for Consumer, Private, Wealth & Business Banking at Standard Chartered, explains how security leaders should think about cyber resilience. She outlines why preparation for extreme events matters as much as day to day protection. Baweja describes cyber resilience as an extension of information security and operational resilience, with a focus on recovery, trust, and continuity when serious incidents occur. The discussion covers three priority areas. The … More → The post A practical take on cyber resilience for CISOs appeared first on Help Net Security.
http://news.poseidon-us.com/TQd81L

ImmuniWeb reports double-digit growth and platform advances

ImmuniWeb has hit another all-time sales record in 2025, while successfully sustaining double-digit year-over-year (YoY) growth and remaining profitable. During 2025, the company announced 4 major updates to the ImmuniWeb AI Platform. All products for web, mobile, and API security testing were enhanced with AI-specific testing capabilities, covering the full scope from OWASP Top 10 to LLM vulnerabilities. ImmuniWeb has also been continually improving its Community Edition with numerous new features and novel functionalities, including … More → The post ImmuniWeb reports double-digit growth and platform advances appeared first on Help Net Security.
http://news.poseidon-us.com/TQd5pc

A fake romance turns into an Android spyware infection

ESET researchers have identified an Android spyware campaign that uses romance scam tactics to target individuals in Pakistan. The operation relies on a malicious app disguised as a chat service that routes conversations through WhatsApp. Behind the romance lure, the app’s primary function is to steal data from infected devices. ESET tracks the malware as GhostChat. GhostChat attack flow (Source: ESET) The same threat actor appears to be running a wider surveillance effort. This includes … More → The post A fake romance turns into an Android spyware infection appeared first on Help Net Security.
http://news.poseidon-us.com/TQd0jf

OPNsense 26.1 brings updates to open-source firewall management

OPNsense, the open-source firewall and network security platform, reached version 26.1, adding a range of updates affecting management, traffic visibility, automation interfaces, and core services. Changes in firewall management and APIs Version 26.1, code-named Witty Woodpecker, introduces revisions to the firewall user experience and its automation interfaces. The live firewall log function was updated to provide administrators with faster insight into real-time traffic decisions. A redesigned Firewall Rules interface restructures how rules are created and … More → The post OPNsense 26.1 brings updates to open-source firewall management appeared first on Help Net Security.
http://news.poseidon-us.com/TQcyDf