433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Lawmaker urges OPM to rethink overhaul of performance management system

Garcia is calling on OPM to rescind the proposal, warning that it will damage workforce effectiveness and morale.
http://news.poseidon-us.com/TRklBm

TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware

TeamPCP continues is supply chain compromise rampage, with telnyx on PyPI being the latest maliciously modified package. What happened? Telnyx is a widely used software development kit (SDK) for the Telnyx AI Voice Agent service. According to Endor Labs researchers, attackers backdoored the legitimate SDK code and published versions 4.87.1 and 4.87.2 of the package on the Python Package Index (PyPI), one shortly after the other. The malicious code wasn’t functional in the first version … More → The post TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware appeared first on Help Net Security.
http://news.poseidon-us.com/TRkhFH

Scientists discover bizarre new states inside tiny magnetic whirlpools

Researchers have uncovered a new way to generate exotic oscillation states in tiny magnetic structures—using only minimal energy. By exciting magnetic waves, they triggered a delicate motion that produced a rich spectrum of signals never seen before in this system. The finding challenges existing assumptions and could help connect different types of technologies, from conventional electronics to quantum devices. It’s a small effect with potentially huge implications.
http://news.poseidon-us.com/TRkW0v

CISA sounds alarm on Langflow RCE, Trivy supply chain compromise after rapid exploitation

The US Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities catalog: CVE-2026-33017, a recently disclosed code injection vulnerability in Langflow, an open-source framework for building AI agents and workflows, and CVE-2026-33634, an embedded malicious code vulnerability in Aqua Security’s Trivy security scanner. Their addition to the catalog means that US federal civilian agencies are required to address the flaws within their networks by April 8 and 9, … More → The post CISA sounds alarm on Langflow RCE, Trivy supply chain compromise after rapid exploitation appeared first on Help Net Security.
http://news.poseidon-us.com/TRkR0M

Ajax data breach exposed season tickets, supporter bans open to tampering

AFC Ajax, the Dutch football club from Amsterdam, disclosed that an unknown hacker gained access to parts of its IT systems and obtained the email addresses of a few hundred people. The hack exploited vulnerabilities in Ajax’s app and website, including exposed APIs and shared access keys. The club stated that names, email addresses, and dates of birth were accessed for fewer than 20 individuals subject to a stadium ban. An RTL journalist, who was … More → The post Ajax data breach exposed season tickets, supporter bans open to tampering appeared first on Help Net Security.
http://news.poseidon-us.com/TRkQzG

Senate approves funding for TSA and most of Homeland Security, but not immigration enforcement

The Senate early Friday approved Homeland Security funds for Transportation Security Administration and most other agencies, but not the immigration operations at the heart of the budget impasse. The deal, which was approved without a roll-call vote, goes next to the House, which is expected to consider it Friday. It’s a potential endgame to the 42-day shutdown has jammed airports, disrupted travel and imposed financial hardship on workers. President Donald Trump said he will sign an order instructing the Homeland Security secretary to immediately pay TSA workers, but if the bill becomes law that won’t be needed. Democrats have been demanding changes to rein in Trump’s immigration enforcement operations.
http://news.poseidon-us.com/TRkQdK

AI frenzy feeds credential chaos, secrets leak through code, tools, and infrastructure

Code keeps moving through pipelines, and credentials continue to surface alongside it. GitGuardian’s State of Secrets Sprawl 2026 puts the count at 28.65 million new hardcoded secrets in public GitHub commits in 2025, extending a multi-year rise in exposed access keys, tokens, and passwords. Public and internal repositories that contain at least one secret (Source: GitGuardian) Exposure is spreading beyond code The problem no longer exists only in public repositories, since internal environments carry a … More → The post AI frenzy feeds credential chaos, secrets leak through code, tools, and infrastructure appeared first on Help Net Security.
http://news.poseidon-us.com/TRkJ5T

Scientists create clear nail polish that lets you use touchscreens with long nails

Using a smartphone with long nails can be frustrating, forcing people to awkwardly tap with their fingertips instead of their nails. Now, researchers are working on a clear nail polish that could change that by turning fingernails into touchscreen-friendly tools. By experimenting with dozens of formulas, they discovered that combining common compounds like taurine and ethanolamine can help nails carry just enough electrical charge for screens to detect a touch.
http://news.poseidon-us.com/TRkCKn