piyokango's Avatar

piyokango

@piyokango.bsky.social

セキュリティインコです🐣 Blueskyでは海外のセキュリティ関連記事を中心につぶやきます。気の向くままブログ(piyolog)も書いてます📝Podcast #セキュリティのアレ も参加中です🎤よろしくお願いします~🐦 プロフィール画像はアレティさんに描いて頂きました😃

1,247 Followers  |  2 Following  |  1,238 Posts  |  Joined: 27.11.2023
Posts Following

Posts by piyokango (@piyokango.bsky.social)

Preview
Arkanix Stealer: AI-assisted info-stealer shuts down after brief campaign Arkanix Stealer surfaced in late 2025 as a short-lived info-stealer, likely built as an AI-assisted experiment and quickly abandoned.

Arkanix Stealer: AI支援型情報窃盗ツールが短期間の活動後に停止
#CybersecurityNews
securityaffairs.com/188431/malwa...

02.03.2026 08:02 — 👍 0    🔁 0    💬 0    📌 0
Preview
Malicious OpenClaw Skills Used to Distribute Atomic MacOS Stealer Malicious OpenClaw skills trick AI agents and users into installing a new AMOS variant that steals extensive data at scale.

macOS スティーラー「Atomic」の配布に悪意ある OpenClaw スキルが利用される
#CybersecurityNews
www.trendmicro.com/en_us/resear...

02.03.2026 08:02 — 👍 2    🔁 1    💬 0    📌 0
Preview
PII Pillage: How Attackers Use BitPanda to Plunder Credentials Attackers are impersonating the cryptocurrency brokerage service Bitpanda to run highly convincing phishing campaigns designed to steal both login credentials and extensive personally identifiable inf...

ID窃盗:攻撃者がBitPandaを使って認証情報を盗む方法
#CybersecurityNews
cofense.com/blog/pii-pil...

02.03.2026 08:01 — 👍 0    🔁 0    💬 0    📌 0
Preview
Meta Director of AI Safety Allows AI Agent to Accidentally Delete Her Inbox Meta Superintelligence Labs’ director of alignment called it a “rookie mistake.”

MetaのAI安全担当ディレクターがAIエージェントの誤操作による受信トレイ削除を許可
#CybersecurityNews
www.404media.co/meta-directo...

02.03.2026 08:01 — 👍 0    🔁 1    💬 0    📌 0
Preview
GrayCharlie Hijacks Law Firm Sites in Suspected Supply-Chain Attack GrayCharlie turns compromised WordPress sites into malware delivery machines. Discover how this threat actor chains fake browser updates and ClickFix lures to deploy NetSupport RAT, Stealc, and Sectop...

GrayCharlie、サプライチェーン攻撃とみられる法律事務所サイトを乗っ取る
#CybersecurityNews
www.recordedfuture.com/research/gra...

02.03.2026 08:00 — 👍 0    🔁 0    💬 0    📌 0
Deep Dive into New XWorm Campaign Utilizing Multiple-Themed Phishing Emails | FortiGuard Labs FortiGuard Labs details a new XWorm RAT campaign using multi-language phishing emails, Excel exploits (CVE-2018-0802), HTA execution, and fileless .NET techniques to gain full remote control of Win…

複数のテーマを持つフィッシングメールを利用した新たなXWormキャンペーンの詳細
#CybersecurityNews
www.fortinet.com/blog/threat-...

02.03.2026 08:00 — 👍 0    🔁 0    💬 0    📌 0
Preview
Anthropic Launches Claude Code Security for AI-Powered Vulnerability Scanning Anthropic unveils Claude Code Security, an AI tool scanning codebases for vulnerabilities with human-reviewed patch suggestions.

Anthropic、AIを活用した脆弱性スキャンツール「Claude Code Security」を発表
#CybersecurityNews
thehackernews.com/2026/02/anth...

02.03.2026 07:59 — 👍 2    🔁 0    💬 0    📌 0
Preview
New ZeroDayRAT Malware Claims Full Monitoring of Android and iOS Devices ZeroDayRAT malware targets Android and iOS devices, offering surveillance, tracking, and crypto theft tools via a Telegram-based MaaS service.

新たなZeroDayRATマルウェア、AndroidとiOSデバイスを完全に監視すると主張
#CybersecurityNews
hackread.com/zerodayrat-m...

02.03.2026 07:58 — 👍 0    🔁 0    💬 0    📌 0
Preview
Spain arrests suspected hacktivists for DDoSing govt sites Spanish authorities have arrested four alleged members of a hacktivist group believed to have carried out cyberattacks targeting government ministries, political parties, and various public institutio...

スペイン、政府サイトへのDDoS攻撃のハクティビスト容疑者を逮捕
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

02.03.2026 07:57 — 👍 0    🔁 0    💬 0    📌 0
Preview
AI-augmented threat actor accesses FortiGate devices at scale | Amazon Web Services Commercial AI services are enabling even unsophisticated threat actors to conduct cyberattacks at scale—a trend Amazon Threat Intelligence has been tracking closely. A recent investigation illustrates...

AIを活用した脅威アクターがFortiGateデバイスに大規模にアクセス
#CybersecurityNews
aws.amazon.com/jp/blogs/sec...

02.03.2026 07:57 — 👍 0    🔁 0    💬 0    📌 0
Preview
Area Man Accidentally Hacks 6,700 Camera-Enabled Robot Vacuums Plus: The top US cyber agency falls into shambles, AI models develop an upsetting penchant for nuclear weapons, and more.

今週のセキュリティニュース:地元の男性が誤ってカメラ付きロボット掃除機6,700台をハッキング
#CybersecurityNews
www.wired.com/story/securi...

02.03.2026 07:56 — 👍 0    🔁 0    💬 0    📌 0
Preview
Iran ’s Internet near-totally blacked out amid US, Israeli strikes Iran experienced a near-total internet blackout as Israel and the U.S. launched strikes, according to NetBlocks.

米・イスラエルの攻撃でイランのインターネットがほぼ完全に遮断
#CybersecurityNews
securityaffairs.com/188648/cyber...

02.03.2026 07:55 — 👍 0    🔁 1    💬 0    📌 0
Preview
DEF CON hackers 'fed up with government,' Jake Braun says Interview: Jake Braun thinks hackers need to create a 'Digital arsenal of democracy' to defend us all

DEFCONの住民「政府にうんざりしている」
#CybersecurityNews
www.theregister.com/2026/02/28/d...

02.03.2026 07:55 — 👍 1    🔁 1    💬 0    📌 0
Preview
Inside a fake Google security check that becomes a browser RAT Disguised as a security check, this fake Google alert uses browser permissions to harvest contacts, location data, and more.

ブラウザRATとなる偽のGoogleセキュリティチェックの中身
#CybersecurityNews
www.malwarebytes.com/blog/privacy...

02.03.2026 07:54 — 👍 0    🔁 0    💬 0    📌 0
Preview
CISA warns that RESURGE malware can be dormant on Ivanti devices The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released new details about RESURGE, a malicious implant used in zero-day attacks exploiting CVE-2025-0282 to breach Ivanti Connect ...

米国CISAは、RESURGEマルウェアがIvantiデバイス上に潜伏している可能性があると警告
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

02.03.2026 07:53 — 👍 0    🔁 0    💬 0    📌 0
Preview
Company Helps Men Scrub Negative Posts About Them from Tea App “We just want to take down posts about people who are being defamed," the company's founder said. “And when I say defamed, it means like, ‘this guy has a small penis,’ or ‘this guy smells.’"

男性がTeaアプリから自分に関するネガティブな投稿を削除するのを支援
#CybersecurityNews
www.404media.co/company-help...

02.03.2026 05:50 — 👍 0    🔁 0    💬 0    📌 0
Preview
How Infostealers Industrialize the Brute-Forcing of Corporate SSO Gateways This means that over 77% of the credentials used in this specific campaign were harvested from machines infected with Infostealers. The threat actors were not using credentials explicitly stolen from ...

インフォスティーラーが企業のSSOゲートウェイのブルートフォース攻撃を産業化する方法
#CybersecurityNews
www.infostealers.com/article/how-...

02.03.2026 05:45 — 👍 0    🔁 0    💬 0    📌 0
Preview
RAMP Forum Seizure Fractures Ransomware Ecosystem Researchers suggest defenders monitor how these malicious groups re-form and leverage the useful threat intel to guide their next moves.

RAMPフォーラムの押収がランサムウェアエコシステムを崩壊させる
#CybersecurityNews
www.darkreading.com/threat-intel...

02.03.2026 05:43 — 👍 1    🔁 0    💬 0    📌 0
Preview
Chinese cyberspies breached dozens of telecom firms, govt agencies Google's Threat Intelligence Group (GTIG), Mandiant, and partners disrupted a global espionage campaign attributed to a suspected Chinese threat actor that used SaaS API calls to hide malicious traffi...

中国のサイバースパイ、数十の通信会社や政府機関に侵入
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

02.03.2026 05:41 — 👍 0    🔁 0    💬 0    📌 0
Preview
Attackers Now Need Just 29 Minutes to Own a Network Credential misuse, AI tools, and security blind spots help attackers move through breached networks faster than ever, CrowdStrike finds.

攻撃者がネットワーク掌握に必要な時間、わずか29分
#CybersecurityNews
www.darkreading.com/cyber-risk/a...

02.03.2026 05:39 — 👍 0    🔁 1    💬 0    📌 0
Preview
North Korean Lazarus Group Adopts Medusa Ransomware in Global Attacks Lazarus Group is now using Medusa ransomware in attacks on healthcare and social services, signaling a move toward profit-focused cybercrime.

北朝鮮Lazarusグループが世界規模の攻撃にMedusa ランサムウェアを採用
#CybersecurityNews
hackread.com/north-korean...

02.03.2026 05:38 — 👍 0    🔁 0    💬 0    📌 0
Preview
VShell and SparkRAT Observed in Exploitation of BeyondTrust Critical Vulnerability (CVE-2026-1731) CVE-2026-1731 is an RCE vulnerability in identity platform BeyondTrust. This flaw allows attackers control of systems without login credentials.

BeyondTrustの深刻な脆弱性(CVE-2026-1731)を悪用したVShellとSparkRATを確認
#CybersecurityNews
unit42.paloaltonetworks.com/beyondtrust-...

21.02.2026 14:05 — 👍 2    🔁 0    💬 0    📌 0
Preview
Remcos Revisited: Inside the RAT’s Evolving Command-and-Control Techniques | Point Wild

Remcos再考:RATの進化するコマンドアンドコントロール技術の内幕
#CybersecurityNews
www.pointwild.com/threat-intel...

21.02.2026 14:00 — 👍 3    🔁 1    💬 0    📌 0
Preview
LLM-generated passwords 'fundamentally weak,' experts say : Seemingly complex strings are actually highly predictable, crackable within hours

AIが生成したパスワード、ランダムではなくランダムに見えるだけ
#CybersecurityNews
www.theregister.com/2026/02/18/g...

21.02.2026 13:56 — 👍 6    🔁 0    💬 0    📌 0
Preview
Record Number of Ransomware Victims and Groups in 2025 Searchlight Cyber reports a 30% annual increase in ransomware victim numbers in 2025

2025年のランサムウェア被害者数とグループ数が過去最高に
#CybersecurityNews
www.infosecurity-magazine.com/news/record-...

21.02.2026 13:53 — 👍 1    🔁 0    💬 0    📌 0
Preview
Chinese APT Group Exploits Dell Zero-Day for Two Years Mandiant reveals campaign featuring exploit of a CVSS 10.0 CVE in Dell RecoverPoint for Virtual Machines

中国のAPTグループがDellのゼロデイ攻撃を2年間にわたり悪用
#CybersecurityNews
www.infosecurity-magazine.com/news/chinese...

21.02.2026 13:53 — 👍 3    🔁 1    💬 0    📌 0
Preview
New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

ClickFix の新しい攻撃、 nslookup を悪用し、DNS 経由で PowerShell ペイロードを取得
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

21.02.2026 13:40 — 👍 4    🔁 1    💬 0    📌 0
Preview
How ClickFix Opens the Door to Stealthy StealC Information Stealer This analysis examines an attack chain targeting Windows systems through social engineering using fake CAPTCHA to trick users into executing PowerShell commands.

ClickFix、ステルス性の高いStealC インフォスティーラーへの扉を開く仕組み
#CybersecurityNews
www.levelblue.com/blogs/spider...

21.02.2026 13:35 — 👍 2    🔁 0    💬 0    📌 0
Preview
PromptSpy is the first known Android malware to use generative AI at runtime Researchers have discovered the first known Android malware to use generative AI in its execution flow, using Google's Gemini model to adapt its persistence across different devices.

PromptSpy、実行時に生成AIを使用する最初のAndroidマルウェア
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

21.02.2026 13:33 — 👍 2    🔁 0    💬 0    📌 0
Claude LLM artifacts abused to push Mac infostealers in ClickFix attack Threat actors are abusing Claude artifacts and Google Ads in ClickFix campaigns that deliver infostealer malware to macOS users searching for specific queries.

ClickFix攻撃、Macのインフォスティーラー拡散目的にClaude LLMのアーティファクト悪用
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

21.02.2026 12:58 — 👍 2    🔁 1    💬 0    📌 0