Advertisement · 728 × 90
#
Hashtag
#BleepingComputer
Advertisement · 728 × 90
キタきつね
キタきつね
@kitafox.bsky.social
4 hours ago
Preview
New Infinity Stealer malware grabs macOS data via ClickFix lures A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler.

新たなInfinity StealerマルウェアがClickFixの罠を利用してmacOSデータを盗み出す

New Infinity Stealer malware grabs macOS data via ClickFix lures #BleepingComputer (Mar 28)

www.bleepingcomputer.com/news/securit...

0 0 0 0
Grub :verified: :linux: :gnu:
Grub :verified: :linux: :gnu:
@grub-09.mastodon.uno.ap.brid.gy
1 day ago
Original post on mastodon.uno

Commissione UE conferma cyberattacco alla piattaforma cloud

La Commissione europea ha confermato un accesso non autorizzato alla piattaforma cloud che ospita i siti europe.eu. Secondo le fonti di Bleeping Computer, ignoti cybercriminali hanno compromesso un account AWS e rubato oltre 350 GB di […]

0 2 0 0
キタきつね
キタきつね
@kitafox.bsky.social
3 days ago
Preview
TP-Link warns users to patch critical router auth bypass flaw TP-Link has patched several vulnerabilities in its Archer NX router series, including a critical-severity flaw that may allow attackers to bypass authentication and upload new firmware.

TP-Linkは、ルーターの認証バイパスに関する重大な脆弱性を修正するようユーザーに警告しています

TP-Link warns users to patch critical router auth bypass flaw #BleepingComputer (Mar 25)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
3 days ago
Preview
Citrix urges admins to patch NetScaler flaws as soon as possible Citrix has patched two NetScaler ADC and NetScaler Gateway vulnerabilities, one of which is very similar to the CitrixBleed and CitrixBleed2 flaws exploited in zero-day attacks in recent years.

Citrixは、NetScalerの脆弱性をできるだけ早く修正するよう管理者に強く求めている

Citrix urges admins to patch NetScaler flaws as soon as possible #BleepingComputer (Mar 25)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
3 days ago
Preview
Bubble AI app builder abused to steal Microsoft account credentials Threat actors are evading phishing detection in campaigns targeting Microsoft accounts by abusing the no-code app-building platform Bubble to generate and host malicious web apps.

Bubble AIアプリビルダーが悪用され、Microsoftアカウントの認証情報が盗まれる

Bubble AI app builder abused to steal Microsoft account credentials #BleepingComputer (Mar 25)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
3 days ago
Preview
PolyShell attacks target 56% of all vulnerable Magento stores Attacks leveraging the 'PolyShell' vulnerability in version 2 of Magento Open Source and Adobe Commerce installations are underway, targeting more than half of all vulnerable stores.

PolyShell攻撃は、脆弱なMagentoストア全体の56%を標的にしている

PolyShell attacks target 56% of all vulnerable Magento stores #BleepingComputer (Mar 25)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
4 days ago
Preview
FCC bans new routers made outside the USA over security risks The Federal Communications Commission has updated its Covered List to include all consumer routers made in foreign countries, banning the sale of new models in the U.S.

FCCはセキュリティリスクを理由に、米国以外で製造された新型ルーターを禁止した

FCC bans new routers made outside the USA over security risks #BleepingComputer (Mar 24)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
4 days ago
Preview
Infinite Campus warns of breach after ShinyHunters claims data theft Infinite Campus, a widely used K-12 student information system, is warning customers of a data breach following an extortion attempt by a threat actor.

ShinyHuntersがデータ盗難を主張したことを受け、Infinite Campusが情報漏洩の警告を発した

Infinite Campus warns of breach after ShinyHunters claims data theft #BleepingComputer (Mar 24)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
HackerOne discloses employee data breach after Navia hack Bug bounty platform HackerOne is notifying hundreds of employees that their data was stolen after attackers hacked Navia, one of its U.S. benefits administrators.

HackerOneがNaviaハッキング後に従業員データ漏洩を公表

HackerOne discloses employee data breach after Navia hack #BleepingComputer (Mar 24)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
TeamPCP deploys Iran-targeted wiper in Kubernetes attacks The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects systems configured for Iran.

TeamPCPがKubernetes攻撃でイランを標的としたワイパーを展開

TeamPCP deploys Iran-targeted wiper in Kubernetes attacks #BleepingComputer (Mar 23)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
Microsoft fixes bug causing Classic Outlook sync issues with Gmail ​Microsoft has fixed a known issue causing Gmail and Yahoo email synchronization and connection problems for classic Outlook users.

Microsoftが、クラシックOutlookとGmailの同期に関する問題を引き起こすバグを修正

Microsoft fixes bug causing Classic Outlook sync issues with Gmail #BleepingComputer (Mar 24)

www.bleepingcomputer.com/news/microso...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
Crunchyroll probes breach after hacker claims to steal 6.8M users' data Popular anime streaming platform Crunchyroll is investigating a breach after hackers claimed to have stolen personal information for approximately 6.8 million people.

Crunchyrollは、ハッカーが680万人のユーザーデータを盗んだと主張したことを受け、情報漏洩の調査を開始した

Crunchyroll probes breach after hacker claims to steal 6.8M users' data #BleepingComputer (Mar 23)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
6 days ago
Preview
New KB5085516 emergency update fixes Microsoft account sign-in Microsoft has released an emergency update to address a major issue that breaks sign-ins with Microsoft accounts across multiple Microsoft apps, including Teams and OneDrive.

新しい緊急更新プログラムKB5085516により、Microsoftアカウントのサインインに関する問題が修正されます

New KB5085516 emergency update fixes Microsoft account sign-in #BleepingComputer (Mar 23)

www.bleepingcomputer.com/news/microso...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
6 days ago
Preview
CISA orders feds to patch DarkSword iOS flaws exploited attacks CISA ordered U.S. government agencies to patch three iOS vulnerabilities targeted in cryptocurrency theft and cyberespionage attacks using the DarkSword exploit kit.

CISAは、悪用された攻撃に対抗するため、連邦政府に対しDarkSword iOSの脆弱性を修正するよう命令した

CISA orders feds to patch DarkSword iOS flaws exploited attacks #BleepingComputer (Mar 23)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
6 days ago
Preview
Trivy vulnerability scanner breach pushed infostealer via GitHub Actions The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed credential-stealing malware through official releases and GitHub Actions.

Trivyの脆弱性スキャナーの侵害により、GitHub Actions経由で情報窃盗犯が拡散した。

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions #BleepingComputer (Mar 21)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
Microsoft stops force-installing the Microsoft 365 Copilot app Microsoft has stopped automatically installing the Microsoft 365 Copilot app on Windows devices that have the Microsoft 365 desktop client apps.

マイクロソフトは、Microsoft 365 Copilotアプリの強制インストールを停止しました

Microsoft stops force-installing the Microsoft 365 Copilot app #BleepingComputer (Mar 17)

www.bleepingcomputer.com/news/microso...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
New Windows 11 hotpatch fixes Bluetooth device visibility issue Microsoft has released an emergency update to fix a Bluetooth device visibility issue on hotpatch-enabled Windows 11 Enterprise devices.

Windows 11の新しいホットパッチでBluetoothデバイスの認識に関する問題が修正されました

New Windows 11 hotpatch fixes Bluetooth device visibility issue #BleepingComputer (Mar 17)

www.bleepingcomputer.com/news/microso...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
Microsoft shares fix for Windows C: drive access issues on Samsung PCs Microsoft has shared guidance to fix C:\ drive access issues and app failures on some Samsung laptops running Windows 11, versions 25H2 and 24H2.

マイクロソフトがSamsung製PCにおけるWindows Cドライブへのアクセス問題の修正プログラムを公開

Microsoft shares fix for Windows C: drive access issues on Samsung PCs #BleepingComputer (Mar 17)

www.bleepingcomputer.com/news/microso...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
CISA flags Wing FTP Server flaw as actively exploited in attacks CISA warned U.S. government agencies to secure their Wing FTP Server instances against an actively exploited vulnerability that may be chained in remote code execution attacks.

CISAは、Wing FTPサーバーの脆弱性が攻撃で悪用されていると警告した

CISA flags Wing FTP Server flaw as actively exploited in attacks #BleepingComputer (Mar 16)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
Fake enterprise VPN sites used to steal company credentials A threat actor tracked as Storm-2561 is distributing fake enterprise VPN clients from Ivanti, Cisco, and Fortinet to steal VPN credentials from unsuspecting users.

企業の認証情報を盗むために悪用される偽の企業向けVPNサイト

Fake enterprise VPN sites used to steal company credentials #BleepingComputer (Mar 13)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
Starbucks discloses data breach affecting hundreds of employees Starbucks has disclosed a data breach affecting hundreds of employees after threat actors gained access to their Starbucks Partner Central accounts.

スターバックス、数百人の従業員に影響を与えるデータ漏洩を公表

Starbucks discloses data breach affecting hundreds of employees #BleepingComputer (Mar 13)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
Poland's nuclear research centre targeted by cyberattack Poland's National Centre for Nuclear Research (NCBJ) says hackers targeted its IT infrastructure, but the attack was detected and blocked before causing any impact.

ポーランドの原子力研究センターがサイバー攻撃の標的に

Poland's nuclear research centre targeted by cyberattack #BleepingComputer (Mar 13)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
Microsoft releases Windows 11 OOB hotpatch to fix RRAS RCE flaw Microsoft has released an out-of-band (OOB) update to fix a security vulnerabilities affecting Windows 11 Enterprise devices that receive hotpatch updates instead of the regular Patch Tuesday…

マイクロソフトがRRAS RCEの脆弱性を修正するWindows 11のOOBホットパッチをリリース

Microsoft releases Windows 11 OOB hotpatch to fix RRAS RCE flaw #BleepingComputer (Mar 14)

www.bleepingcomputer.com/news/microso...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
Veeam warns of critical flaws exposing backup servers to RCE attacks Data protection company Veeam Software has patched multiple flaws in its Backup & Replication solution, including four critical remote code execution (RCE) vulnerabilities.

Veeam、バックアップサーバーをRCE攻撃にさらす重大な欠陥について警告

Veeam warns of critical flaws exposing backup servers to RCE attacks #BleepingComputer (Mar 12)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
Medtech giant Stryker offline after Iran-linked wiper malware attack Leading medical technology company Stryker has been hit by a wiper malware attack claimed by Handala, an Iranian-linked and pro-Palestinian hacktivist group.

医療技術大手ストライカー、イラン関連のワイパーマルウェア攻撃でオフラインに

Medtech giant Stryker offline after Iran-linked wiper malware attack #BleepingComputer (Mar 11)

www.bleepingcomputer.com/news/securit...

0 1 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
New PhantomRaven NPM attack wave steals dev data via 88 packages New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.

PhantomRavenの新たなNPM攻撃の波が88個のパッケージを介して開発データを盗む

New PhantomRaven NPM attack wave steals dev data via 88 packages #BleepingComputer (Mar 11)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
Microsoft to enable Windows hotpatch security updates by default Microsoft will turn on hotpatch security updates by default for all eligible Windows devices managed through Microsoft Intune and the Microsoft Graph API, beginning with the May 2026 Windows security…

マイクロソフト、Windowsのホットパッチセキュリティアップデートをデフォルトで有効化へ

Microsoft to enable Windows hotpatch security updates by default #BleepingComputer (Mar 10)

www.bleepingcomputer.com/news/microso...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
New KadNap botnet hijacks ASUS routers to fuel cybercrime proxy network A newly discovered botnet malware called KadNap is targeting ASUS routers and other edge networking devices to turn them into proxies for malicious traffic.

新たなKadNapボットネットがASUSルーターを乗っ取り、サイバー犯罪プロキシネットワークを活性化

New KadNap botnet hijacks ASUS routers to fuel cybercrime proxy network #BleepingComputer (Mar 10)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
New 'Zombie ZIP' technique lets malware slip past security tools A new technique dubbed "Zombie ZIP" helps conceal payloads in compressed files specially created to avoid detection from security solutions such as antivirus and endpoint detection and response (EDR)…

新しい「ゾンビZIP」技術により、マルウェアがセキュリティツールをすり抜ける

New 'Zombie ZIP' technique lets malware slip past security tools #BleepingComputer (Mar 10)

www.bleepingcomputer.com/news/securit...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites An SQL injection vulnerability in Ally, a WordPress plugin from Elementor for web accessibility and usability with more than 400,000 installations, could be exploited to steal sensitive data without…

Elementor AllyプラグインのSQLi欠陥が25万以上のWordPressサイトに影響

SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites #BleepingComputer (Mar 11)

www.bleepingcomputer.com/news/securit...

0 0 0 0