piyokango

Who is the Kimwolf Botmaster “Dort”? In early January 2026, KrebsOnSecurity revealed how a security researcher disclosed a vulnerability that was used to assemble Kimwolf, the world's largest and most disruptive botnet. Since then, the p...

Kimwolfのbotマスター「Dort」とは何者か？
#CybersecurityNews
krebsonsecurity.com/2026/02/who-...

Hackers Weaponize Claude Code in Mexican Government Cyberattack A threat actor has weaponized Anthropic’s Claude Code to breach the Mexican government’s systems and steal over 150GB of data.

メキシコ政府のサイバー攻撃でハッカーがClaude Codeを武器化
#CybersecurityNews
www.securityweek.com/hackers-weap...

Ransomware Payments Decline 8% as Attacks Surge 50% Chainalysis reveals a big surge in median ransomware payment size in 2025 despite overall drop in criminal revenue

ランサムウェア攻撃が50%増加、支払いは8%減少
#CybersecurityNews
www.infosecurity-magazine.com/news/ransomw...

Vulnerability Allowed Hijacking Chrome's Gemini Live AI Assistant A Chrome vulnerability allowed malicious extensions to hijack the browser’s Gemini Live assistant to spy on users and exfiltrate data.

脆弱性によりChromeのGemini Live AIアシスタントが乗っ取られる可能性
#CybersecurityNews
www.securityweek.com/vulnerabilit...

Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch Russia-linked APT28 reportedly exploited MSHTML zero-day CVE-2026-21513 before Microsoft patched it, a high-severity bypass flaw.

ロシア関連のAPT28がパッチ適用前にMSHTMLのゼロデイ脆弱性CVE-2026-21513を悪用
#CybersecurityNews
securityaffairs.com/188782/secur...

Amazon Data Centers on Fire After Iranian Missile Strikes on Dubai Some AWS services are down in the Middle East. Recovery is unclear as it requires 'careful assessment to ensure the safety of our operators,' according to Amazon.

イランのミサイル攻撃でAmazonのデータセンターが火災、ドバイで発生
#CybersecurityNews
www.404media.co/amazon-data-...

Businesses told to harden defenses amid Iran conflict risk : NCSC urges all to review posture as escalating tensions increase risk of indirect digital spillover

イラン紛争リスクの中、英国企業はサイバー防御を強化するよう指示される
#CybersecurityNews
www.theregister.com/2026/03/02/n...

Attacks on GPS Spike Amid US and Israeli War on Iran New analysis shows that attacks on satellite navigation systems have impacted some 1,100 ships in the Middle East since the US and Israel attacked Iran on February 28.

米・イスラエルのイラン戦争でGPSへの攻撃が急増
#CybersecurityNews
www.wired.com/story/gps-at...

CyberStrikeAI tool adopted by hackers for AI-powered attacks Researchers warn that a newly identified open-source AI security testing platform called CyberStrikeAI was used by the same threat actor behind a recent campaign that breached hundreds of Fortinet For...

Cyber​​StrikeAIツールがAIを活用した攻撃にハッカーに採用される
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

Talos on the developing situation in the Middle East Cisco Talos continues to monitor the ongoing conflict in the Middle East. As always, we will be watching closely for any cyber-related incidents that are tied to the conflict.

中東情勢の進展に関するTalos
#CybersecurityNews
blog.talosintelligence.com/talos-develo...

Arkanix Stealer: AI-assisted info-stealer shuts down after brief campaign Arkanix Stealer surfaced in late 2025 as a short-lived info-stealer, likely built as an AI-assisted experiment and quickly abandoned.

Arkanix Stealer: AI支援型情報窃盗ツールが短期間の活動後に停止
#CybersecurityNews
securityaffairs.com/188431/malwa...

Malicious OpenClaw Skills Used to Distribute Atomic MacOS Stealer Malicious OpenClaw skills trick AI agents and users into installing a new AMOS variant that steals extensive data at scale.

macOS スティーラー「Atomic」の配布に悪意ある OpenClaw スキルが利用される
#CybersecurityNews
www.trendmicro.com/en_us/resear...

PII Pillage: How Attackers Use BitPanda to Plunder Credentials Attackers are impersonating the cryptocurrency brokerage service Bitpanda to run highly convincing phishing campaigns designed to steal both login credentials and extensive personally identifiable inf...

ID窃盗：攻撃者がBitPandaを使って認証情報を盗む方法
#CybersecurityNews
cofense.com/blog/pii-pil...

Meta Director of AI Safety Allows AI Agent to Accidentally Delete Her Inbox Meta Superintelligence Labs’ director of alignment called it a “rookie mistake.”

MetaのAI安全担当ディレクターがAIエージェントの誤操作による受信トレイ削除を許可
#CybersecurityNews
www.404media.co/meta-directo...

GrayCharlie Hijacks Law Firm Sites in Suspected Supply-Chain Attack GrayCharlie turns compromised WordPress sites into malware delivery machines. Discover how this threat actor chains fake browser updates and ClickFix lures to deploy NetSupport RAT, Stealc, and Sectop...

GrayCharlie、サプライチェーン攻撃とみられる法律事務所サイトを乗っ取る
#CybersecurityNews
www.recordedfuture.com/research/gra...

複数のテーマを持つフィッシングメールを利用した新たなXWormキャンペーンの詳細
#CybersecurityNews
www.fortinet.com/blog/threat-...

Anthropic Launches Claude Code Security for AI-Powered Vulnerability Scanning Anthropic unveils Claude Code Security, an AI tool scanning codebases for vulnerabilities with human-reviewed patch suggestions.

Anthropic、AIを活用した脆弱性スキャンツール「Claude Code Security」を発表
#CybersecurityNews
thehackernews.com/2026/02/anth...

New ZeroDayRAT Malware Claims Full Monitoring of Android and iOS Devices ZeroDayRAT malware targets Android and iOS devices, offering surveillance, tracking, and crypto theft tools via a Telegram-based MaaS service.

新たなZeroDayRATマルウェア、AndroidとiOSデバイスを完全に監視すると主張
#CybersecurityNews
hackread.com/zerodayrat-m...

Spain arrests suspected hacktivists for DDoSing govt sites Spanish authorities have arrested four alleged members of a hacktivist group believed to have carried out cyberattacks targeting government ministries, political parties, and various public institutio...

スペイン、政府サイトへのDDoS攻撃のハクティビスト容疑者を逮捕
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

AI-augmented threat actor accesses FortiGate devices at scale | Amazon Web Services Commercial AI services are enabling even unsophisticated threat actors to conduct cyberattacks at scale—a trend Amazon Threat Intelligence has been tracking closely. A recent investigation illustrates...

AIを活用した脅威アクターがFortiGateデバイスに大規模にアクセス
#CybersecurityNews
aws.amazon.com/jp/blogs/sec...

Area Man Accidentally Hacks 6,700 Camera-Enabled Robot Vacuums Plus: The top US cyber agency falls into shambles, AI models develop an upsetting penchant for nuclear weapons, and more.

今週のセキュリティニュース：地元の男性が誤ってカメラ付きロボット掃除機6,700台をハッキング
#CybersecurityNews
www.wired.com/story/securi...

Iran ’s Internet near-totally blacked out amid US, Israeli strikes Iran experienced a near-total internet blackout as Israel and the U.S. launched strikes, according to NetBlocks.

米・イスラエルの攻撃でイランのインターネットがほぼ完全に遮断
#CybersecurityNews
securityaffairs.com/188648/cyber...

DEF CON hackers 'fed up with government,' Jake Braun says Interview: Jake Braun thinks hackers need to create a 'Digital arsenal of democracy' to defend us all

DEFCONの住民「政府にうんざりしている」
#CybersecurityNews
www.theregister.com/2026/02/28/d...

Inside a fake Google security check that becomes a browser RAT Disguised as a security check, this fake Google alert uses browser permissions to harvest contacts, location data, and more.

ブラウザRATとなる偽のGoogleセキュリティチェックの中身
#CybersecurityNews
www.malwarebytes.com/blog/privacy...

CISA warns that RESURGE malware can be dormant on Ivanti devices The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released new details about RESURGE, a malicious implant used in zero-day attacks exploiting CVE-2025-0282 to breach Ivanti Connect ...

米国CISAは、RESURGEマルウェアがIvantiデバイス上に潜伏している可能性があると警告
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

Company Helps Men Scrub Negative Posts About Them from Tea App “We just want to take down posts about people who are being defamed," the company's founder said. “And when I say defamed, it means like, ‘this guy has a small penis,’ or ‘this guy smells.’"

男性がTeaアプリから自分に関するネガティブな投稿を削除するのを支援
#CybersecurityNews
www.404media.co/company-help...

How Infostealers Industrialize the Brute-Forcing of Corporate SSO Gateways This means that over 77% of the credentials used in this specific campaign were harvested from machines infected with Infostealers. The threat actors were not using credentials explicitly stolen from ...

インフォスティーラーが企業のSSOゲートウェイのブルートフォース攻撃を産業化する方法
#CybersecurityNews
www.infostealers.com/article/how-...

RAMP Forum Seizure Fractures Ransomware Ecosystem Researchers suggest defenders monitor how these malicious groups re-form and leverage the useful threat intel to guide their next moves.

RAMPフォーラムの押収がランサムウェアエコシステムを崩壊させる
#CybersecurityNews
www.darkreading.com/threat-intel...

Chinese cyberspies breached dozens of telecom firms, govt agencies Google's Threat Intelligence Group (GTIG), Mandiant, and partners disrupted a global espionage campaign attributed to a suspected Chinese threat actor that used SaaS API calls to hide malicious traffi...

中国のサイバースパイ、数十の通信会社や政府機関に侵入
#CybersecurityNews
www.bleepingcomputer.com/news/securit...

Attackers Now Need Just 29 Minutes to Own a Network Credential misuse, AI tools, and security blind spots help attackers move through breached networks faster than ever, CrowdStrike finds.

攻撃者がネットワーク掌握に必要な時間、わずか29分
#CybersecurityNews
www.darkreading.com/cyber-risk/a...