#InfoSecurityMagazine

キタきつね

@kitafox.bsky.social

2 days ago

CISA Issues Emergency Directive Over Exploited Cisco SD-WAN Flaws CISA issued urgent directive as attackers exploit Cisco SD-WAN flaw granting admin access to networks

CISA、Cisco SD-WANの脆弱性を悪用した緊急指令を発行

CISA Issues Emergency Directive Over Exploited Cisco SD-WAN Flaws #InfosecurityMagazine (Mar 12)

www.infosecurity-magazine.com/news/cisa-ci...

キタきつね

@kitafox.bsky.social

2 days ago

Critical Zero-Click Flaw in n8n Allows Full Server Compromise The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account to be exploited

n8nの重大なゼロクリック脆弱性によりサーバー全体が侵害される

Critical Zero-Click Flaw in n8n Allows Full Server Compromise #InfosecurityMagazine (Mar 13)

www.infosecurity-magazine.com/news/critica...

キタきつね

@kitafox.bsky.social

2 days ago

Cyber-Attacks on UK Firms Increase at Four Times Global Rate Check Point data shows attack volumes are growing much faster in the UK than worldwide

英国企業へのサイバー攻撃が世界平均の4倍に増加

Cyber-Attacks on UK Firms Increase at Four Times Global Rate #InfosecurityMagazine (Mar 11)

www.infosecurity-magazine.com/news/cyberat...

キタきつね

@kitafox.bsky.social

2 days ago

Researchers Discover Major Security Gaps in LLM Guardrails Palo Alto Networks’ Unit 42 has developed a successful attack to bypass safety guardrails in popular generative AI tools

研究者らがLLMガードレールにおける重大なセキュリティギャップを発見

Researchers Discover Major Security Gaps in LLM Guardrails #InfosecurityMagazine (Mar 11)

www.infosecurity-magazine.com/news/major-s...

キタきつね

@kitafox.bsky.social

2 days ago

BlackSanta EDR-Killer Targets HR Teams in CV-Themed Campaign BlackSanta malware targets HR staff with fake resumes, kills EDR and steals system data

BlackSanta EDRキラー、履歴書をテーマにしたキャンペーンで人事部門を標的に

BlackSanta EDR-Killer Targets HR Teams in CV-Themed Campaign #InfosecurityMagazine (Mar 11)

www.infosecurity-magazine.com/news/blacksa...

キタきつね

@kitafox.bsky.social

2 days ago

France's Cybersecurity Agency Reports Ransomware Attack Drop in 2025 French small and medium businesses remained the organizations most targeted by ransomware in 2025

フランス：国家サイバーセキュリティ機関、2025年にランサムウェア攻撃が減少すると報告

France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025 #InfosecurityMagazine (Mar 12)

www.infosecurity-magazine.com/news/france-...

キタきつね

@kitafox.bsky.social

3 days ago

Cloud Attackers Now Prefer Vulnerability Exploits Over Credentials Google Cloud report details a sharp rise in attackers exploiting software vulnerabilities, including React2Shell

Google Cloudの調査によると、クラウド攻撃者は認証情報よりも脆弱性の悪用を好む傾向がある

Cloud Attackers Now Prefer Vulnerability Exploits Over Credentials, Google Cloud Finds #InfosecurityMagazine (Mar 11)

www.infosecurity-magazine.com/news/cloud-a...

キタきつね

@kitafox.bsky.social

3 days ago

Only 24% Of organizations Test Identity Recovery Every Six Months Only 24% of organizations test identity disaster recovery plans every 6 months, Quest Software said

6ヶ月ごとにID復旧をテストする組織はわずか24%

Only 24% Of organizations Test Identity Recovery Every Six Months #InfosecurityMagazine (Mar 11)

www.infosecurity-magazine.com/news/organiz...

キタきつね

@kitafox.bsky.social

4 days ago

Microsoft Fixes Two Publicly Disclosed Zero-Days March Patch Tuesday sees Microsoft release updates for 79 flaws

マイクロソフト、公開された2つのゼロデイ脆弱性を修正

Microsoft Fixes Two Publicly Disclosed Zero-Days #InfosecurityMagazine (Mar 11)

www.infosecurity-magazine.com/news/microso...

キタきつね

@kitafox.bsky.social

4 days ago

Compromised WordPress Sites Deliver ClickFix Attacks Over 250 legitimate websites, including news outlets and a US Senate candidate’s official webpage, been compromised to infect visitors with infostealers, warn Rapid7 researchers

侵害されたWordPressサイトが世界的な情報窃盗キャンペーンでClickFix攻撃を実行

Compromised WordPress Sites Deliver ClickFix Attacks in Global Infostealer Campaign #InfosecurityMagazine (Mar 11)

www.infosecurity-magazine.com/news/wordpre...

キタきつね

@kitafox.bsky.social

4 days ago

UK Launches New Crackdown Unit to Tackle Cyber-Fraud at the Source New UK Online Crime Centre will combine expertise from a range of sources to takedown online channels cyber-scammers rely on

英国、サイバー詐欺の根源に迫る新たな取り締まり部隊を設置

UK Launches New Crackdown Unit to Tackle Cyber-Fraud at the Source #InfosecurityMagazine (Mar 9)

www.infosecurity-magazine.com/news/uk-new-...

キタきつね

@kitafox.bsky.social

4 days ago

Trump Administration Unveils New Cyber Strategy For America US national cyber strategy focuses on stronger defenses, countering threats, fostering innovation

トランプ政権、アメリカの新たなサイバー戦略を発表

Trump Administration Unveils New Cyber Strategy for America #InfosecurityMagazine (Mar 10)

www.infosecurity-magazine.com/news/usa-unv...

キタきつね

@kitafox.bsky.social

4 days ago

Threat Actor Exploits Flaws and Uses Elastic Cloud SIEM to Manage Stol Huntress researchers uncover campaign exploiting vulnerabilities to steal data using Elastic Cloud as a data hub

脅威アクターが脆弱性を悪用し、Elastic Cloud SIEMを使用して盗まれたデータを管理

Threat Actor Exploits Flaws and Uses Elastic Cloud SIEM to Manage Stolen Data #InfosecurityMagazine (Mar 10)

www.infosecurity-magazine.com/news/elastic...

キタきつね

@kitafox.bsky.social

5 days ago

AI-Driven Insider Risk Now a “Critical Business Threat,” Report Warns Malicious insiders are using misusing AI for nefarious gain, while employees cutting corners also creates risk, warns Mimecast

AIによる内部リスクは今や「重大なビジネス脅威」だと報告書が警告

AI-Driven Insider Risk Now a “Critical Business Threat,” Report Warns #InfosecurityMagazine (Mar 6)

www.infosecurity-magazine.com/news/ai-insi...

キタきつね

@kitafox.bsky.social

5 days ago

Zero‑Day Attacks on Enterprise Software Reach Record High Almost a quarter of the zero days detected by Google in 2025 targeted security and networking appliances

企業向けソフトウェアへのゼロデイ攻撃が過去最高を記録、Googleが警告

Zero‑Day Attacks on Enterprise Software Reach Record High, Google Warns #InfosecurityMagazine (Mar 6)

www.infosecurity-magazine.com/news/zero-da...

キタきつね

@kitafox.bsky.social

1 week ago

AI-Driven Insider Risk Now a “Critical Business Threat,” Report Warns Malicious insiders are using misusing AI for nefarious gain, while employees cutting corners also creates risk, warns Mimecast

AIによる内部リスクは今や「重大なビジネス脅威」だと報告書が警告

AI-Driven Insider Risk Now a “Critical Business Threat,” Report Warns #InfosecurityMagazine (Mar 6)

www.infosecurity-magazine.com/news/ai-insi...

キタきつね

@kitafox.bsky.social

1 week ago

Coruna Exploit Kit Targets Older iPhones in Multi-Stage Campaigns Exploit kit

Corunaエクスプロイトキット、多段階キャンペーンで旧型iPhoneを標的に

Coruna Exploit Kit Targets Older iPhones in Multi-Stage Campaigns #InfosecurityMagazine (Mar 5)

www.infosecurity-magazine.com/news/coruna-...

キタきつね

@kitafox.bsky.social

1 week ago

Surge in Attacks on Surveillance Cameras Linked to Iranian Hackers Increased attempts to compromise surveillance cameras linked to Iran during Middle East conflict

イランのハッカーによる監視カメラへの攻撃が急増

Surge in Attacks on Surveillance Cameras Linked to Iranian Hackers #InfosecurityMagazine (Mar 5)

www.infosecurity-magazine.com/news/iran-at...

キタきつね

@kitafox.bsky.social

1 week ago

Coalition of Western Countries Launches 6G Cybersecurity Guidelines A coalition of seven Western nations has launched guidelines to help integrate security-by-design principles into future 6G standards

西側諸国連合が6Gサイバーセキュリティガイドラインを発表

Coalition of Western Countries Launches 6G Cybersecurity Guidelines #InfosecurityMagazine (Mar 5)

www.infosecurity-magazine.com/news/gcot-6g...

キタきつね

@kitafox.bsky.social

1 week ago

Hybrid Middle East Conflict Triggers Surge in Global Cyber Activity Military strikes in the Middle East escalate cyber ops, raising spillover risks globally for firms

ハイブリッド中東紛争が世界的なサイバー活動の急増を引き起こす

Hybrid Middle East Conflict Triggers Surge in Global Cyber Activity #InfosecurityMagazine (Mar 3)

www.infosecurity-magazine.com/news/middle-...

キタきつね

@kitafox.bsky.social

1 week ago

Huge “Shadow Layer” of Organizations Hit by Supply Chain Attacks Black Kite reveals 26,000 unnamed corporate victims linked to 136 third-party breaches

サプライチェーン攻撃を受けた組織の巨大な「シャドーレイヤー」

Huge “Shadow Layer” of Organizations Hit by Supply Chain Attacks #InfosecurityMagazine (Mar 3)

www.infosecurity-magazine.com/news/shadow-...

キタきつね

@kitafox.bsky.social

1 week ago

Half of US CISOs Work the Equivalent of a Six-Day Week Seemplicity finds US security leaders work 11 or more extra hours per week

米国のCISOの半数は週6日勤務に相当する

Half of US CISOs Work the Equivalent of a Six-Day Week #InfosecurityMagazine (Mar 3)

www.infosecurity-magazine.com/news/half-us...

キタきつね

@kitafox.bsky.social

1 week ago

AI and Deepfakes Supercharge Sophisticated Cyber-Attacks: Cloudflare Cloudflare Threat Report warns that AI tools enable attackers who lacked required skills to generate effective attacks rapidly and at scale

Cloudflareによると、AIとディープフェイクは高度なサイバー攻撃を加速させる

AI and Deepfakes Supercharge Sophisticated Cyber-Attacks, Says Cloudflare #InfosecurityMagazine (Mar 4)

www.infosecurity-magazine.com/news/ai-deep...

キタきつね

@kitafox.bsky.social

1 week ago

Ransomware Payments Decline 8% as Attacks Surge 50% Chainalysis reveals a big surge in median ransomware payment size in 2025 despite overall drop in criminal revenue

ランサムウェア攻撃が50%増加、支払いは8%減少

Ransomware Payments Decline 8% as Attacks Surge 50% #InfosecurityMagazine (Mar 2)

www.infosecurity-magazine.com/news/ransomw...

キタきつね

@kitafox.bsky.social

1 week ago

Hybrid Middle East Conflict Triggers Surge in Global Cyber Activity Military strikes in the Middle East escalate cyber ops, raising spillover risks globally for firms

ハイブリッド中東紛争が世界的なサイバー活動の急増を引き起こす

Hybrid Middle East Conflict Triggers Surge in Global Cyber Activity #InfosecurityMagazine (Mar 3)

www.infosecurity-magazine.com/news/middle-...

キタきつね

@kitafox.bsky.social

1 week ago

Chrome Unveils Plan For Quantum-Safe HTTPS Certificates Google Chrome initiates quantum-resistant measures via Merkle Tree Certificates to secure HTTPS

Chromeが耐量子HTTPS証明書の計画を発表

Chrome Unveils Plan For Quantum-Safe HTTPS Certificates #InfosecurityMagazine (Mar 3)

www.infosecurity-magazine.com/news/chrome-...

キタきつね

@kitafox.bsky.social

1 week ago

Expect Iran to Launch Cyber-Attacks Globally, Warns Google John Hultquist suggests “aggressive” Iranian cyber attackers will target the US and its Gulf allies with plausibly deniable ransomware attacks, hacktivist campaigns and more

イランが世界規模でサイバー攻撃を仕掛けるとGoogleの脅威情報責任者が警告

Expect Iran to Launch Cyber-Attacks Globally, Warns Google Head of Threat Intel #InfosecurityMagazine (Mar 3)

www.infosecurity-magazine.com/news/iran-cy...

キタきつね

@kitafox.bsky.social

1 week ago

Darktrace Flags 32 Million Phishing Emails in 2025 as Identity Attacks 2025 saw 32M phishing emails, with identity threats surpassing vulnerabilities

ダークトレース、2025年には3,200万件のフィッシングメールを警告、ID攻撃が激化

Darktrace Flags 32 Million Phishing Emails in 2025 as Identity Attacks Intensify #InfosecurityMagazine (Feb 27)

www.infosecurity-magazine.com/news/32m-phi...

キタきつね

@kitafox.bsky.social

1 week ago

Exploitable Vulnerabilities Present in 87% of Organizations Datadog report reveals two-fifths of services are affected by exploitable bugs

87%の組織に悪用可能な脆弱性が存在

Exploitable Vulnerabilities Present in 87% of Organizations #InfosecurityMagazine (Feb 26)

www.infosecurity-magazine.com/news/exploit...

キタきつね

@kitafox.bsky.social

1 week ago

UK Vulnerability Monitoring Service Cuts Unresolved Security Flaws by The UK government says its new Vulnerability Monitoring Service has cut unresolved security flaws by 75% and reduced cyber-attack fix times from nearly two months to just over a week

英国の脆弱性監視サービス、未解決のセキュリティ欠陥を75%削減

UK Vulnerability Monitoring Service Cuts Unresolved Security Flaws by 75% #InfosecurityMagazine (Feb 27)

www.infosecurity-magazine.com/news/uk-vuln...