Advertisement · 728 × 90
#
Hashtag
#HelpNetSecurity
Advertisement · 728 × 90
キタきつね
キタきつね
@kitafox.bsky.social
3 hours ago
Preview
Attackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521) - Help Net Security An unauthenticated remote code execution flaw (CVE-2025-53521) in F5's BIG-IP Access Policy Manager (APM) is under active exploitation.

攻撃者は、BIG-IP APMシステムのリモートコード実行(RCE)の脆弱性(CVE-2025-53521)を悪用しています

Attackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521) #HelpNetSecurity (Mar 28)

www.helpnetsecurity.com/2026/03/28/b...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
3 hours ago
Preview
CISA sounds alarm on Langflow RCE, Trivy supply chain compromise after rapid exploitation - Help Net Security CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities catalog: CVE-2026-33017 and CVE-2026-33634.

CISAは、Langflow RCEとTrivyによるサプライチェーン侵害が急速に悪用されたことを受け、警鐘を鳴らした

CISA sounds alarm on Langflow RCE, Trivy supply chain compromise after rapid exploitation #HelpNetSecurity (Mar 27)

www.helpnetsecurity.com/2026/03/27/c...

1 0 1 0
キタきつね
キタきつね
@kitafox.bsky.social
3 days ago
Preview
Gemini picks up criminal activity buried in dark web noise - Help Net Security To help teams make faster decisions on emerging threats, Google added a dark web intelligence capability to Google Threat Intelligence.

ジェミニは、ダークウェブのノイズに埋もれた犯罪行為を検知する

Gemini picks up criminal activity buried in dark web noise #HelpNetSecurity (Mar 25)

www.helpnetsecurity.com/2026/03/25/g...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
3 days ago
Preview
Training an AI agent to attack LLM applications like a real adversary - Help Net Security Novee launches an AI pentesting agent that tests LLM apps continuously against prompt injection and other AI-specific attack techniques.

AIエージェントを訓練して、実際の敵対者のようにLLMアプリケーションを攻撃させる

Training an AI agent to attack LLM applications like a real adversary #HelpNetSecurity (Mar 25)

www.helpnetsecurity.com/2026/03/25/n...

2 0 1 0
キタきつね
キタきつね
@kitafox.bsky.social
3 days ago
Preview
Your security stack looks fine from the dashboard and that's the problem - Help Net Security Enterprise endpoint security gaps cost companies $49M yearly in downtime as 1 in 5 devices runs outside enforceable protection.

ダッシュボード上ではセキュリティスタックは問題ないように見えますが、それが問題なのです

Your security stack looks fine from the dashboard and that’s the problem #HelpNetSecurity (Mar 25)

www.helpnetsecurity.com/2026/03/25/c...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
3 days ago
Preview
LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks - Help Net Security A slew of supply chain attacks against popular open source tools and packages appears to have been orchestrated by TeamPCP cybercriminals.

LiteLLM PyPIパッケージがTeamPCPサプライチェーン攻撃の拡大に伴い侵害される

LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks #HelpNetSecurity (Mar 25)

www.helpnetsecurity.com/2026/03/25/t...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
4 days ago
Preview
The AI safety conversation is focused on the wrong layer - Help Net Security AI agents are exposing enterprise identity sprawl as a control problem. Here's what security leaders need to fix before deployment scales.

AIの安全性に関する議論は、間違った層に焦点を当てている

The AI safety conversation is focused on the wrong layer #HelpNetSecurity (Mar 24)

www.helpnetsecurity.com/2026/03/24/a...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
4 days ago
Preview
32% of top-exploited vulnerabilities are over a decade old - Help Net Security Enterprise vulnerability exploitation is accelerating alongside ransomware activity, MFA attacks, email threats, and growing AI-driven risks.

最も悪用されている脆弱性の32%は10年以上前のものだ

32% of top-exploited vulnerabilities are over a decade old #HelpNetSecurity (Mar 24)

www.helpnetsecurity.com/2026/03/24/e...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
4 days ago
Preview
Microsoft details AI prompt abuse techniques targeting AI assistants - Help Net Security AI prompt abuse techniques can manipulate assistants, bypass safeguards, and extract sensitive information through crafted inputs.

マイクロソフトは、AIアシスタントを標的としたAIプロンプトの悪用手法を詳細に説明した

Microsoft details AI prompt abuse techniques targeting AI assistants #HelpNetSecurity (Mar 24)

www.helpnetsecurity.com/2026/03/24/m...

1 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
4 days ago
Preview
GitHub-hosted malware campaign uses split payload to evade detection - Help Net Security A large-scale malware delivery campaign has been targeting developers, gamers, and general users through fake tools hosted on GitHub.

GitHubでホストされているマルウェアキャンペーンは、検出を回避するために分割ペイロードを使用している

GitHub-hosted malware campaign uses split payload to evade detection #HelpNetSecurity (Mar 24)

www.helpnetsecurity.com/2026/03/24/g...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
Critical NetScaler ADC, Gateway flaw may soon be exploited (CVE-2026-3055) - Help Net Security CVE-2026-3055 in NetScaler ADC and Gateway may allow attackers to extract active session tokens from the memory of affected devices.

NetScaler ADCおよびゲートウェイの重大な脆弱性が悪用される可能性あり(CVE-2026-3055)

Critical NetScaler ADC, Gateway flaw may soon be exploited (CVE-2026-3055) #HelpNetSecurity (Mar 24)

www.helpnetsecurity.com/2026/03/24/n...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
NIST updates its DNS security guidance for the first time in over a decade - Help Net Security NIST's updated DNS security guide covers encrypted DNS, protective DNS, and DNSSEC for teams managing enterprise infrastructure.

NISTは10年以上ぶりにDNSセキュリティに関するガイダンスを更新した

NIST updates its DNS security guidance for the first time in over a decade #HelpNetSecurity (Mar 23)

www.helpnetsecurity.com/2026/03/23/n...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
Quantum threats are already active and the defense response remains fragmented - Help Net Security Enterprises face post-quantum crypto agility gaps as HNDL attacks accelerate. pQCee launches a Windows CNG provider to help close them.

量子脅威は既に発生しており、防御対応は依然として断片的である

Quantum threats are already active and the defense response remains fragmented #HelpNetSecurity (Mar 23)

www.helpnetsecurity.com/2026/03/23/c...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
The devices winning the race to get hacked in 2026 - Help Net Security Connected devices are driving rising security risk across IT, IoT, OT, and IoMT environments, with routers among the most exposed assets.

2026年にハッキングされる可能性が最も高いデバイス

The devices winning the race to get hacked in 2026 #HelpNetSecurity (Mar 23)

www.helpnetsecurity.com/2026/03/23/c...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
6 days ago
Preview
Oracle issues emergency fix for pre-auth RCE in Identity Manager (CVE-2026-21992) - Help Net Security Oracle has fixed an easily exploitable vulnerability (CVE-2026-21992) in Oracle Identity Manager and Oracle Web Services Manager.

Oracle社、Identity Managerにおける認証前リモートコード実行の脆弱性(CVE-2026-21992)に対する緊急修正プログラムをリリース

Oracle issues emergency fix for pre-auth RCE in Identity Manager (CVE-2026-21992) #HelpNetSecurity (Mar 23)

www.helpnetsecurity.com/2026/03/23/o...

1 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
6 days ago
Preview
Field workers don't need more access, they need better security - Help Net Security Field worker cybersecurity requires least privilege, MFA, and practical training to protect data while enabling secure work in the field.

現場作業員に必要なのは、より多くのアクセス権ではなく、より優れたセキュリティである

Field workers don’t need more access, they need better security #HelpNetSecurity (Mar 20)

www.helpnetsecurity.com/2026/03/20/c...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
6 days ago
Preview
Terminated contract led to $2.5 million cyber extortion scheme - Help Net Security A federal jury convicted Cameron Curry, 27, of carrying out a cyber extortion scheme against a Washington, D.C.-based tech company.

契約解除が250万ドルのサイバー恐喝事件につながった

Terminated contract led to $2.5 million cyber extortion scheme #HelpNetSecurity (Mar 20)

www.helpnetsecurity.com/2026/03/20/c...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
EU sanctions Chinese company behind 65,000-device hack - Help Net Security The EU imposed sanctions on companies from China and Iran over cyberattacks targeting its member states and partners.

EU、6万5000台のデバイスをハッキングした中国企業に制裁措置

EU sanctions Chinese company behind 65,000-device hack #HelpNetSecurity (Mar 17)

www.helpnetsecurity.com/2026/03/17/e...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
Authorities dismantle SocksEscort proxy network behind millions in fraud - Help Net Security A global takedown disrupted the SocksEscort proxy network that infected thousands of routers and helped cybercriminals carry out fraud.

当局は、数百万ドル規模の詐欺に関与していたSocksEscortプロキシネットワークを解体した

Authorities dismantle SocksEscort proxy network behind millions in fraud #HelpNetSecurity (Mar 13)

www.helpnetsecurity.com/2026/03/13/s...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
AI coding agents keep repeating decade-old security mistakes - Help Net Security AI coding agents introduced vulnerabilities in 87% of pull requests across Claude, Codex, and Gemini builds, exposing access control gaps.

AIコーディングエージェントは、10年前のセキュリティ上の過ちを繰り返している

AI coding agents keep repeating decade-old security mistakes #HelpNetSecurity (Mar 13)

www.helpnetsecurity.com/2026/03/13/c...

2 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
Researchers uncover AI-powered vishing platform - Help Net Security A vishing-as-a-service platform is misusing text-to-speech (TTS) capabilities provided by an AI voice technology company

研究者がAI搭載のフィッシングプラットフォームを発見

Researchers uncover AI-powered vishing platform #HelpNetSecurity (Mar 11)

www.helpnetsecurity.com/2026/03/11/r...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
Meta turns to AI to sniff out scams on Facebook, Messenger and WhatsApp - Help Net Security Meta expands AI scam protection across Facebook, Messenger and WhatsApp with tools to detect impersonation, and fraud links.

MetaはFacebook、Messenger、WhatsAppでの詐欺を検知するためにAIを採用

Meta turns to AI to sniff out scams on Facebook, Messenger and WhatsApp #HelpNetSecurity (Mar 11)

www.helpnetsecurity.com/2026/03/11/m...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
Software vulnerabilities push credential abuse aside in cloud intrusions - Help Net Security Cyber threats in cloud environments are shifting toward software vulnerabilities, identity compromise and insider data theft.

ソフトウェアの脆弱性がクラウド侵入における認証情報の不正利用を阻む

Software vulnerabilities push credential abuse aside in cloud intrusions #HelpNetSecurity (Mar 11)

www.helpnetsecurity.com/2026/03/11/g...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
Microsoft patches 80+ vulnerabilities, six flagged as "more likely" to be exploited - Help Net Security On March 2026 Patch Tuesday, Microsoft addressed 80+ vulnerabilities affecting its software and cloud services.

マイクロソフトが80以上の脆弱性を修正、6件は「悪用される可能性が高い」と警告

Microsoft patches 80+ vulnerabilities, six flagged as “more likely” to be exploited #HelpNetSecurity (Mar 11)

www.helpnetsecurity.com/2026/03/11/m...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
HR, recruiters targeted in year-long malware campaign - Help Net Security An attack campaign targeting HR departments and job recruiters has been stealthily compromising company systems.

人事担当者や採用担当者が1年にわたるマルウェア攻撃の標的に

HR, recruiters targeted in year-long malware campaign #HelpNetSecurity (Mar 10)

www.helpnetsecurity.com/2026/03/10/h...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
Microsoft flips Windows Autopatch to default hotpatch security updates - Help Net Security Windows Autopatch is enabling hotpatch security updates by default, allowing eligible devices to apply fixes without restarts.

マイクロソフト、Windows Autopatch をデフォルトのホットパッチ セキュリティ更新に切り替え

Microsoft flips Windows Autopatch to default hotpatch security updates #HelpNetSecurity (Mar 10)

www.helpnetsecurity.com/2026/03/10/m...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
New Claude tool uses AI agents to find bugs in pull requests - Help Net Security Anthropic’s Claude Code Review uses AI agents to scan pull requests, flag bugs, rank issues, and automate reviews at scale.

新しいClaudeツールはAIエージェントを使用してプルリクエストのバグを見つけます

New Claude tool uses AI agents to find bugs in pull requests #HelpNetSecurity (Mar 10)

www.helpnetsecurity.com/2026/03/10/a...

1 1 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
Airbus CSO on supply chain blind spots, space threats, and the limits of AI red-teaming - Help Net Security Airbus CSO Pascal Andrei on aerospace defense cybersecurity: supply chain gaps, satellite threats, AI red-teaming flaws, and compliance pitfalls.

エアバスCSOがサプライチェーンの盲点、宇宙の脅威、AIレッドチームの限界について語る

Airbus CSO on supply chain blind spots, space threats, and the limits of AI red-teaming #HelpNetSecurity (Mar 10)

www.helpnetsecurity.com/2026/03/10/p...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
The people behind cyber extortion are often in their forties - Help Net Security Cybercrime age profile analysis shows profit-driven cybercrime peaks among offenders aged 35-44, challenging the stereotype of young hackers.

サイバー恐喝の背後にいるのは40代の人々であることが多い

The people behind cyber extortion are often in their forties #HelpNetSecurity (Mar 10)

www.helpnetsecurity.com/2026/03/10/c...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
2 weeks ago
Preview
Submarine cables move to the center of critical infrastructure security debate - Help Net Security Submarine cable security gaps leave global networks exposed to geopolitical threats and growing repair shortfalls.

海底ケーブルが重要インフラのセキュリティ議論の中心に

Submarine cables move to the center of critical infrastructure security debate #HelpNetSecurity (Mar 9)

www.helpnetsecurity.com/2026/03/09/o...

0 0 0 0