Blog

“Perfect” Adobe Experience Manager vulnerability is being exploited (CVE-2025-54253)

CISA has added CVE-2025-54253, a misconfiguration vulnerability in Adobe Experience Manager (AEM) Forms on Java Enterprise Edition (JEE), to its Known Exploited Vulnerabilities catalog, thus warning of detected in-the-wild exploitation. Adobe fixed the vulnerability in August 2025, along with CVE-2025-54254, an Improper Restriction of XML External Entity Reference vulnerability in the same solution. But with a proof-of-concept (PoC) exploit for the two flaws having been made public before that, it was only a matter of … More → The post “Perfect” Adobe Experience Manager vulnerability is being exploited (CVE-2025-54253) appeared first on Help Net Security.
http://news.poseidon-us.com/TNjrsM

Citi rolls out prompt training requirement to most staff

Employees have written more than 6.5 million prompts for the company’s AI platforms thus far this year as adoption advances.
http://news.poseidon-us.com/TNjQZp

Veeam launches Data Cloud for MSPs to simplify Microsoft 365 and Entra ID protection

Veeam Software announced the availability of Veeam Data Cloud (VDC) for Managed Service Providers (MSPs) through the Veeam Cloud & Service Provider (VCSP) program. Designed to empower third-party service providers, Veeam Data Cloud delivers secure, scalable, and resilient data protection through a SaaS platform for clients across diverse environments.otection and resilience through a secure, scalable SaaS platform for their clients across diverse environments. Veeam Data Cloud for MSPs is the “easy button” for service providers … More → The post Veeam launches Data Cloud for MSPs to simplify Microsoft 365 and Entra ID protection appeared first on Help Net Security.
http://news.poseidon-us.com/TNjHVw

Cayosoft Guardian Protector safeguards Microsoft 365 and hybrid identity systems

Cayosoft introduced Cayosoft Guardian Protector, a free, always-on solution that delivers real-time threat detection, proactive alerts, resolution guidance, and change history for complex Microsoft hybrid identity environments. Cayosoft Guardian Protector provides administrators and security teams with continuous, real-time visibility and control across Active Directory (AD), Entra ID, Microsoft 365, Microsoft Teams, Microsoft Intune, and Microsoft Exchange Online. More than 90% of large enterprises run Microsoft Active Directory and Entra ID, making them prime targets for … More → The post Cayosoft Guardian Protector safeguards Microsoft 365 and hybrid identity systems appeared first on Help Net Security.
http://news.poseidon-us.com/TNjHV2

When trusted AI connections turn hostile

Researchers have revealed a new security blind spot in how LLM applications connect to external systems. Their study shows that malicious Model Context Protocol (MCP) servers can quietly take control of hosts, manipulate LLM behavior, and deceive users, all while staying undetected by existing tools. MCP servers, which act as connectors that let AI systems access files, tools, and online data, can be turned into active threats. They are easy to create, hard to detect, … More → The post When trusted AI connections turn hostile appeared first on Help Net Security.
http://news.poseidon-us.com/TNjDHq

Quantum crystals could spark the next tech revolution

Auburn scientists have designed new materials that manipulate free electrons to unlock groundbreaking applications. These “Surface Immobilized Electrides” could power future quantum computers or transform chemical manufacturing. Stable, tunable, and scalable, they represent a leap beyond traditional electrides. The work bridges theory and potential real-world use.
http://news.poseidon-us.com/TNjD5f