piyokango

Look What You Made Us Patch: 2025 Zero-Days in Review | Google Cloud Blog Our analysis of 90 zero-day vulnerabilities tracked in 2025, focusing on techniques and how AI will accelerate the vulnerability landscape.

パッチ「Look What You Made Us」：2025年のゼロデイを振り返る
#CybersecurityNews
cloud.google.com/blog/topics/...

Microsoft spots ClickFix scam spreading Lumma infostealer : Crooks tweak familiar copy-paste ruse so that victims run malicious commands themselves

Microsoft、Windowsターミナルでユーザーを自爆させるClickFixキャンペーンを発見
#CybersecurityNews
www.theregister.com/2026/03/06/m...

Proactive Preparation and Hardening Against Destructive Attacks: 2026 Edition | Google Cloud Blog Proactive recommendations organizations must prioritize to protect against destructive attacks within an environment.

破壊的攻撃に対する事前の準備と強化：2026年版
#CybersecurityNews
cloud.google.com/blog/topics/...

NoName057(16) DDoS Attacks Hit Multiple Israeli Websites - Daily Dark Web NoName057(16) DDoS Attacks Hit Multiple Israeli Websites Discover the latest security threats and database leaks, including unauthorized VPN access and email breaches, in the cyber underground world.S...

NoName057(16) イスラエルの複数のウェブサイトにDDoS攻撃
#CybersecurityNews
dailydarkweb.net/noname05716-...

Microsoft: Hackers abusing AI at every stage of cyberattacks Microsoft says threat actors are increasingly using artificial intelligence in their operations to accelerate attacks, scale malicious activity, and lower technical barriers across all aspects of a cy...

Microsoftいわく、ハッカーはサイバー攻撃のあらゆる段階でAIを悪用
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

Hacked Prayer App Sends ‘Surrender’ Messages to Iranians Amid Israeli and US Strikes As Israeli airstrikes hit Tehran this morning, Iranians received mysterious push notifications saying that “help is on the way,” promising amnesty if they surrender.

ハッキングされた祈祷アプリ、イスラエルと米国の攻撃の最中、イラン人に「降伏」メッセージを送信
#CybersecurityNews
www.wired.com/story/hacked...

Hackers Spread Fake Red Alert Rocket Alert App to Spy on Israeli Users Follow us on all social media platforms @Hackread

ハッカーがイスラエルのユーザーをスパイするために偽のRed Alertロケット警報アプリを拡散
#CybersecurityNews
hackread.com/hackers-fake...

Fake Claude Code install guides push infostealers in InstallFix attacks Threat actors are employing a new variation of the ClickFix social engineering technique called InstallFix to convince users into running malicious commands under the pretext of installing legitimate ...

偽のClaude Codeインストールガイド、InstallFix攻撃でインフォスティーラーを仕込む
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

The long-awaited Trump cyber strategy has arrived President Donald Trump released his administration's cyber strategy Friday, promoting offense operations in cyberspace, securing federal networks and critical infrastructure, streamlining regulations,...

待望のトランプサイバー戦略が到来
#CybersecurityNews
cyberscoop.com/trump-cybers...

Termite ransomware breaches linked to ClickFix CastleRAT attacks Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.

ClickFix CastleRAT攻撃に関連するTermiteランサムウェア侵害
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

New Social Security Scam Emails Use Fake Tax Documents to Hijack PCs Follow us on all social media platforms @Hackread

新たな社会保障詐欺メール、偽の納税書類を使ってPCのっとり
#CybersecurityNews
hackread.com/social-secur...

New BoryptGrab Stealer Targets Windows Users via Deceptive GitHub Pages The BoryptGrab campaign uses fake SEO‑optimized GitHub repositories and deceptive download pages to distribute a data‑stealing malware family that delivers multiple payloads, including a reverse SSH b...

新たなBoryptGrab Stealerが偽のGitHubページ経由でWindowsユーザーを狙う
#CybersecurityNews
www.trendmicro.com/en_us/resear...

Seedworm: Iranian APT on Networks of U.S. Bank, Airport, Software Company This activity began in early February and has continued in recent days. What organizations should expect next from Iran-aligned groups and the steps they should take to guard against cyberattacks.

Seedworm：米国の銀行、空港、ソフトウェア会社のネットワークを狙うイランのAPT
#CybersecurityNews
www.security.com/threat-intel...

UAT-9244 targets South American telecommunication providers with three new malware implants Cisco Talos is disclosing UAT-9244, who we assess with high confidence is a China-nexus advanced persistent threat (APT) actor closely associated with Famous Sparrow.

UAT-9244は、3つの新しいマルウェアで南米の通信事業者を標的に
#CybersecurityNews
blog.talosintelligence.com/uat-9244/

Iranian Cyber Threat Actor Targets Iraqi Government Officials Zscaler ThreatLabz assessed with medium to high confidence that an Iranian adversary targeted Iraq’s Ministry of Foreign Affairs in a new cyber-attack

イランのサイバー脅威アクターがAIを活用したキャンペーンでイラク政府関係者を標的に
#CybersecurityNews
www.infosecurity-magazine.com/news/iran-cy...

Half of US CISOs Work the Equivalent of a Six-Day Week Seemplicity finds US security leaders work 11 or more extra hours per week

米国のCISOの半数、実質週6日勤務
#CybersecurityNews
www.infosecurity-magazine.com/news/half-us...

Cybercriminals turn essential DNS space into a phishing playground New phishing attacks weaponize the internet’s backbone using .arpa domains and clever tricks to evade security systems entirely

ハッカーはフィッシング詐欺のために.arpaドメインを乗っ取り、誰にも気づかれない悪意のあるウェブサイトやドメインをホストしている
#CybersecurityNews
www.techradar.com/pro/security...

A suite of government hacking tools targeting iPhones is now being used by cybercriminals | TechCrunch Security researchers say exploits used by governments to hack into iPhones have been found to be used by cybercriminals. They warned of an emerging market for "secondhand" exploits.

iPhoneを標的とする政府のハッキングツールがサイバー犯罪者に利用されている
#CybersecurityNews
techcrunch.com/2026/03/03/a...

Fake VCs target crypto talent The attack uses a new ClickFix campaign.

偽のベンチャーキャピタルが新たなClickFixキャンペーンで暗号通貨関連の人材をターゲットに
#CybersecurityNews
moonlock.com/fake-vcs-tar...

Who is the Kimwolf Botmaster “Dort”? In early January 2026, KrebsOnSecurity revealed how a security researcher disclosed a vulnerability that was used to assemble Kimwolf, the world's largest and most disruptive botnet. Since then, the p...

Kimwolfのbotマスター「Dort」とは何者か？
#CybersecurityNews
krebsonsecurity.com/2026/02/who-...

Hackers Weaponize Claude Code in Mexican Government Cyberattack A threat actor has weaponized Anthropic’s Claude Code to breach the Mexican government’s systems and steal over 150GB of data.

メキシコ政府のサイバー攻撃でハッカーがClaude Codeを武器化
#CybersecurityNews
www.securityweek.com/hackers-weap...

Ransomware Payments Decline 8% as Attacks Surge 50% Chainalysis reveals a big surge in median ransomware payment size in 2025 despite overall drop in criminal revenue

ランサムウェア攻撃が50%増加、支払いは8%減少
#CybersecurityNews
www.infosecurity-magazine.com/news/ransomw...

Vulnerability Allowed Hijacking Chrome's Gemini Live AI Assistant A Chrome vulnerability allowed malicious extensions to hijack the browser’s Gemini Live assistant to spy on users and exfiltrate data.

脆弱性によりChromeのGemini Live AIアシスタントが乗っ取られる可能性
#CybersecurityNews
www.securityweek.com/vulnerabilit...

Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch Russia-linked APT28 reportedly exploited MSHTML zero-day CVE-2026-21513 before Microsoft patched it, a high-severity bypass flaw.

ロシア関連のAPT28がパッチ適用前にMSHTMLのゼロデイ脆弱性CVE-2026-21513を悪用
#CybersecurityNews
securityaffairs.com/188782/secur...

Amazon Data Centers on Fire After Iranian Missile Strikes on Dubai Some AWS services are down in the Middle East. Recovery is unclear as it requires 'careful assessment to ensure the safety of our operators,' according to Amazon.

イランのミサイル攻撃でAmazonのデータセンターが火災、ドバイで発生
#CybersecurityNews
www.404media.co/amazon-data-...

Businesses told to harden defenses amid Iran conflict risk : NCSC urges all to review posture as escalating tensions increase risk of indirect digital spillover

イラン紛争リスクの中、英国企業はサイバー防御を強化するよう指示される
#CybersecurityNews
www.theregister.com/2026/03/02/n...

Attacks on GPS Spike Amid US and Israeli War on Iran New analysis shows that attacks on satellite navigation systems have impacted some 1,100 ships in the Middle East since the US and Israel attacked Iran on February 28.

米・イスラエルのイラン戦争でGPSへの攻撃が急増
#CybersecurityNews
www.wired.com/story/gps-at...

CyberStrikeAI tool adopted by hackers for AI-powered attacks Researchers warn that a newly identified open-source AI security testing platform called CyberStrikeAI was used by the same threat actor behind a recent campaign that breached hundreds of Fortinet For...

Cyber​​StrikeAIツールがAIを活用した攻撃にハッカーに採用される
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

Talos on the developing situation in the Middle East Cisco Talos continues to monitor the ongoing conflict in the Middle East. As always, we will be watching closely for any cyber-related incidents that are tied to the conflict.

中東情勢の進展に関するTalos
#CybersecurityNews
blog.talosintelligence.com/talos-develo...

Arkanix Stealer: AI-assisted info-stealer shuts down after brief campaign Arkanix Stealer surfaced in late 2025 as a short-lived info-stealer, likely built as an AI-assisted experiment and quickly abandoned.

Arkanix Stealer: AI支援型情報窃盗ツールが短期間の活動後に停止
#CybersecurityNews
securityaffairs.com/188431/malwa...