433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

Russian cybercrooks exploiting 7-Zip zero-day vulnerability (CVE-2025-0411)

CVE-2025-0411, a Mark-of-the-Web bypass vulnerability in the open-source archiver tool 7-Zip that was fixed in November 2024, has been exploited in zero-day attacks to deliver malware to Ukrainian entities, Trend Micro researchers have revealed. The 7-Zip vulnerability (CVE-2025-0411) Mark-of-the-Web (MotW) is a zone identifier used by the Windows operating system to flag files downloaded from the internet as potentially harmful. “CVE-2025-0411 allows threat actors to bypass Windows MoTW protections by double archiving contents using 7-Zip. … More → The post Russian cybercrooks exploiting 7-Zip zero-day vulnerability (CVE-2025-0411) appeared first on Help Net Security.
http://news.poseidon-us.com/THmq2y

User-friendly system can help developers build more efficient simulations and AI models

Researchers developed an automated system to help programmers increase the efficiency of their deep learning algorithms by simultaneously leveraging two types of redundancy in complex data structures: sparsity and symmetry.
http://news.poseidon-us.com/THmmJP

Computer model helps identify cancer-fighting immune cells key to immunotherapy

Researchers have developed a computer model to help scientists identify tumor-fighting immune cells in patients with lung cancer treated with immune checkpoint inhibitors.
http://news.poseidon-us.com/THmmHr

Knowing what to do doesn’t help if you can’t do it

Jennifer Pahlka, founder and CEO of Code For America, has called for a capacity agenda in 2025, which would help the government to do things properly. The post Knowing what to do doesn’t help if you can’t do it first appeared on Federal News Network.
http://news.poseidon-us.com/THml8k

Nymi Band 4 delivers passwordless MFA to deskless workers in OT environments

Nymi launched next-generation wearable authenticator, the Nymi Band 4, which introduces design upgrades and expanded passwordless use cases for regulated industries, while retaining its core authentication functionality. This latest development from Nymi offers industries with complex operations a handsfree solution for passwordless, Multi-Factor Authentication (MFA) that delivers strong security, compliance, and convenience for deskless workers, including manufacturing line operators, laboratory scientists, field technicians, and other critical workers in process-intensive environments. The Nymi Band 4 is … More → The post Nymi Band 4 delivers passwordless MFA to deskless workers in OT environments appeared first on Help Net Security.
http://news.poseidon-us.com/THmj97

Casio UK site compromised, equipped with web skimmer

Japanese electronics maker Casio has had its UK website injected with a web skimmer that collected buyers’ personal and payment card information, Jscrambler has discovered. The company says that the same skimmer has been added to at least seventeen (and possibly more) websites, but refrained from disclosing the names. “All the victims were loading a skimmer script from the same hosting provider in Russia. It was also observed that even though the skimming domains could … More → The post Casio UK site compromised, equipped with web skimmer appeared first on Help Net Security.
http://news.poseidon-us.com/THmj8g

CISO stature gains traction as global cyber risk escalates

Security leaders are making inroads with corporate boards and now have a seat at the table with CEOs, a Splunk report shows.
http://news.poseidon-us.com/THmh00

Man charged with stealing $65 million by exploting DeFI protocols vulnerabilities

A Canadian man has been indicted in federal court in New York for exploiting vulnerabilities in two decentralized finance (DeFi) protocols to fraudulently obtain about $65 million from the protocols’ investors. The fraudulent scheme According to court documents, from 2021 to 2023, Andean Medjedovic, 22, allegedly exploited vulnerabilities in the automated smart contracts used by the KyberSwap and Indexed Finance decentralized finance protocols. Medjedovic borrowed hundreds of millions of dollars in digital tokens, which he … More → The post Man charged with stealing $65 million by exploting DeFI protocols vulnerabilities appeared first on Help Net Security.
http://news.poseidon-us.com/THmbZX

Why logs aren’t enough: Enhancing SIEM with AI-driven NDR

Join cybersecurity expert Jonathan Mayled from 5-hour Energy as he uncovers the limitations of log-based SIEMs and the transformative role of AI-driven Network Detection and Response (NDR). Logs alone can’t deliver the visibility and context required to secure modern, hybrid environments. Combining NDR with SIEM ensures comprehensive coverage, faster detection, and smarter responses. The post Why logs aren’t enough: Enhancing SIEM with AI-driven NDR appeared first on Help Net Security.
http://news.poseidon-us.com/THmVhF

Aim for crypto-agility, prepare for the long haul

While organizations have long experimented with various facets of digital transformation, the journey toward crypto-agility is one of the most significant technological transitions of our time. Success in the emerging quantum era will require technical expertise, strategic foresight, careful planning, and an unwavering commitment to security. The challenges Perhaps the most pressing challenge in the quest towards cryptographic agility is encryption key sprawl, where visibility into organizations’ encryption key ecosystem becomes cloudy. Many companies struggle … More → The post Aim for crypto-agility, prepare for the long haul appeared first on Help Net Security.
http://news.poseidon-us.com/THmM1J