piyokango

Iranian Cyber Threat Actor Targets Iraqi Government Officials Zscaler ThreatLabz assessed with medium to high confidence that an Iranian adversary targeted Iraq’s Ministry of Foreign Affairs in a new cyber-attack

イランのサイバー脅威アクターがAIを活用したキャンペーンでイラク政府関係者を標的に
#CybersecurityNews
www.infosecurity-magazine.com/news/iran-cy...

Half of US CISOs Work the Equivalent of a Six-Day Week Seemplicity finds US security leaders work 11 or more extra hours per week

米国のCISOの半数、実質週6日勤務
#CybersecurityNews
www.infosecurity-magazine.com/news/half-us...

Cybercriminals turn essential DNS space into a phishing playground New phishing attacks weaponize the internet’s backbone using .arpa domains and clever tricks to evade security systems entirely

ハッカーはフィッシング詐欺のために.arpaドメインを乗っ取り、誰にも気づかれない悪意のあるウェブサイトやドメインをホストしている
#CybersecurityNews
www.techradar.com/pro/security...

A suite of government hacking tools targeting iPhones is now being used by cybercriminals | TechCrunch Security researchers say exploits used by governments to hack into iPhones have been found to be used by cybercriminals. They warned of an emerging market for "secondhand" exploits.

iPhoneを標的とする政府のハッキングツールがサイバー犯罪者に利用されている
#CybersecurityNews
techcrunch.com/2026/03/03/a...

Fake VCs target crypto talent The attack uses a new ClickFix campaign.

偽のベンチャーキャピタルが新たなClickFixキャンペーンで暗号通貨関連の人材をターゲットに
#CybersecurityNews
moonlock.com/fake-vcs-tar...

Who is the Kimwolf Botmaster “Dort”? In early January 2026, KrebsOnSecurity revealed how a security researcher disclosed a vulnerability that was used to assemble Kimwolf, the world's largest and most disruptive botnet. Since then, the p...

Kimwolfのbotマスター「Dort」とは何者か？
#CybersecurityNews
krebsonsecurity.com/2026/02/who-...

Hackers Weaponize Claude Code in Mexican Government Cyberattack A threat actor has weaponized Anthropic’s Claude Code to breach the Mexican government’s systems and steal over 150GB of data.

メキシコ政府のサイバー攻撃でハッカーがClaude Codeを武器化
#CybersecurityNews
www.securityweek.com/hackers-weap...

Ransomware Payments Decline 8% as Attacks Surge 50% Chainalysis reveals a big surge in median ransomware payment size in 2025 despite overall drop in criminal revenue

ランサムウェア攻撃が50%増加、支払いは8%減少
#CybersecurityNews
www.infosecurity-magazine.com/news/ransomw...

Vulnerability Allowed Hijacking Chrome's Gemini Live AI Assistant A Chrome vulnerability allowed malicious extensions to hijack the browser’s Gemini Live assistant to spy on users and exfiltrate data.

脆弱性によりChromeのGemini Live AIアシスタントが乗っ取られる可能性
#CybersecurityNews
www.securityweek.com/vulnerabilit...

Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch Russia-linked APT28 reportedly exploited MSHTML zero-day CVE-2026-21513 before Microsoft patched it, a high-severity bypass flaw.

ロシア関連のAPT28がパッチ適用前にMSHTMLのゼロデイ脆弱性CVE-2026-21513を悪用
#CybersecurityNews
securityaffairs.com/188782/secur...

Amazon Data Centers on Fire After Iranian Missile Strikes on Dubai Some AWS services are down in the Middle East. Recovery is unclear as it requires 'careful assessment to ensure the safety of our operators,' according to Amazon.

イランのミサイル攻撃でAmazonのデータセンターが火災、ドバイで発生
#CybersecurityNews
www.404media.co/amazon-data-...

Businesses told to harden defenses amid Iran conflict risk : NCSC urges all to review posture as escalating tensions increase risk of indirect digital spillover

イラン紛争リスクの中、英国企業はサイバー防御を強化するよう指示される
#CybersecurityNews
www.theregister.com/2026/03/02/n...

Attacks on GPS Spike Amid US and Israeli War on Iran New analysis shows that attacks on satellite navigation systems have impacted some 1,100 ships in the Middle East since the US and Israel attacked Iran on February 28.

米・イスラエルのイラン戦争でGPSへの攻撃が急増
#CybersecurityNews
www.wired.com/story/gps-at...

CyberStrikeAI tool adopted by hackers for AI-powered attacks Researchers warn that a newly identified open-source AI security testing platform called CyberStrikeAI was used by the same threat actor behind a recent campaign that breached hundreds of Fortinet For...

Cyber​​StrikeAIツールがAIを活用した攻撃にハッカーに採用される
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

Talos on the developing situation in the Middle East Cisco Talos continues to monitor the ongoing conflict in the Middle East. As always, we will be watching closely for any cyber-related incidents that are tied to the conflict.

中東情勢の進展に関するTalos
#CybersecurityNews
blog.talosintelligence.com/talos-develo...

Arkanix Stealer: AI-assisted info-stealer shuts down after brief campaign Arkanix Stealer surfaced in late 2025 as a short-lived info-stealer, likely built as an AI-assisted experiment and quickly abandoned.

Arkanix Stealer: AI支援型情報窃盗ツールが短期間の活動後に停止
#CybersecurityNews
securityaffairs.com/188431/malwa...

Malicious OpenClaw Skills Used to Distribute Atomic MacOS Stealer Malicious OpenClaw skills trick AI agents and users into installing a new AMOS variant that steals extensive data at scale.

macOS スティーラー「Atomic」の配布に悪意ある OpenClaw スキルが利用される
#CybersecurityNews
www.trendmicro.com/en_us/resear...

PII Pillage: How Attackers Use BitPanda to Plunder Credentials Attackers are impersonating the cryptocurrency brokerage service Bitpanda to run highly convincing phishing campaigns designed to steal both login credentials and extensive personally identifiable inf...

ID窃盗：攻撃者がBitPandaを使って認証情報を盗む方法
#CybersecurityNews
cofense.com/blog/pii-pil...

Meta Director of AI Safety Allows AI Agent to Accidentally Delete Her Inbox Meta Superintelligence Labs’ director of alignment called it a “rookie mistake.”

MetaのAI安全担当ディレクターがAIエージェントの誤操作による受信トレイ削除を許可
#CybersecurityNews
www.404media.co/meta-directo...

GrayCharlie Hijacks Law Firm Sites in Suspected Supply-Chain Attack GrayCharlie turns compromised WordPress sites into malware delivery machines. Discover how this threat actor chains fake browser updates and ClickFix lures to deploy NetSupport RAT, Stealc, and Sectop...

GrayCharlie、サプライチェーン攻撃とみられる法律事務所サイトを乗っ取る
#CybersecurityNews
www.recordedfuture.com/research/gra...

複数のテーマを持つフィッシングメールを利用した新たなXWormキャンペーンの詳細
#CybersecurityNews
www.fortinet.com/blog/threat-...

Anthropic Launches Claude Code Security for AI-Powered Vulnerability Scanning Anthropic unveils Claude Code Security, an AI tool scanning codebases for vulnerabilities with human-reviewed patch suggestions.

Anthropic、AIを活用した脆弱性スキャンツール「Claude Code Security」を発表
#CybersecurityNews
thehackernews.com/2026/02/anth...

New ZeroDayRAT Malware Claims Full Monitoring of Android and iOS Devices ZeroDayRAT malware targets Android and iOS devices, offering surveillance, tracking, and crypto theft tools via a Telegram-based MaaS service.

新たなZeroDayRATマルウェア、AndroidとiOSデバイスを完全に監視すると主張
#CybersecurityNews
hackread.com/zerodayrat-m...

Spain arrests suspected hacktivists for DDoSing govt sites Spanish authorities have arrested four alleged members of a hacktivist group believed to have carried out cyberattacks targeting government ministries, political parties, and various public institutio...

スペイン、政府サイトへのDDoS攻撃のハクティビスト容疑者を逮捕
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

AI-augmented threat actor accesses FortiGate devices at scale | Amazon Web Services Commercial AI services are enabling even unsophisticated threat actors to conduct cyberattacks at scale—a trend Amazon Threat Intelligence has been tracking closely. A recent investigation illustrates...

AIを活用した脅威アクターがFortiGateデバイスに大規模にアクセス
#CybersecurityNews
aws.amazon.com/jp/blogs/sec...

Area Man Accidentally Hacks 6,700 Camera-Enabled Robot Vacuums Plus: The top US cyber agency falls into shambles, AI models develop an upsetting penchant for nuclear weapons, and more.

今週のセキュリティニュース：地元の男性が誤ってカメラ付きロボット掃除機6,700台をハッキング
#CybersecurityNews
www.wired.com/story/securi...

Iran ’s Internet near-totally blacked out amid US, Israeli strikes Iran experienced a near-total internet blackout as Israel and the U.S. launched strikes, according to NetBlocks.

米・イスラエルの攻撃でイランのインターネットがほぼ完全に遮断
#CybersecurityNews
securityaffairs.com/188648/cyber...

DEF CON hackers 'fed up with government,' Jake Braun says Interview: Jake Braun thinks hackers need to create a 'Digital arsenal of democracy' to defend us all

DEFCONの住民「政府にうんざりしている」
#CybersecurityNews
www.theregister.com/2026/02/28/d...

Inside a fake Google security check that becomes a browser RAT Disguised as a security check, this fake Google alert uses browser permissions to harvest contacts, location data, and more.

ブラウザRATとなる偽のGoogleセキュリティチェックの中身
#CybersecurityNews
www.malwarebytes.com/blog/privacy...

CISA warns that RESURGE malware can be dormant on Ivanti devices The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released new details about RESURGE, a malicious implant used in zero-day attacks exploiting CVE-2025-0282 to breach Ivanti Connect ...

米国CISAは、RESURGEマルウェアがIvantiデバイス上に潜伏している可能性があると警告
#CybersecurityNews
www.bleepingcomputer.com/news/securit...