Advertisement · 728 × 90
#
Hashtag
#SecurityWeek
Advertisement · 728 × 90
キタきつね
キタきつね
@kitafox.bsky.social
8 minutes ago
Preview
BIND Updates Patch High-Severity Vulnerabilities Specially crafted domains could be used to cause out-of-memory conditions, leading to memory leaks in the BIND resolvers.

BINDのアップデートにより、重大な脆弱性が修正されました

BIND Updates Patch High-Severity Vulnerabilities #SecurityWeek (Mar 26)

www.securityweek.com/bind-updates...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
8 minutes ago
Preview
CISA Flags Critical PTC Vulnerability That Had German Police Mobilized Police in Germany physically warned organizations about the critical PTC Windchill vulnerability tracked as CVE-2026-4681.

CISAがPTCの重大な脆弱性を指摘、ドイツ警察が動員される事態に発展

CISA Flags Critical PTC Vulnerability That Had German Police Mobilized #SecurityWeek (Mar 27)

www.securityweek.com/cisa-flags-c...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
9 minutes ago
Preview
Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs The infection chain includes a fake CAPTCHA page, a Bash script, a Nuitka loader, and the Python-based infostealer.

Cloudflareを模倣したClickFix攻撃により、Mac上でInfiniti Stealerが拡散

Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs #SecurityWeek (Mar 28)

www.securityweek.com/cloudflare-t...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
9 minutes ago
Preview
TP-Link Patches High-Severity Router Vulnerabilities The security defects could be used to bypass authentication, execute arbitrary commands, and decrypt configuration files.

TP-Linkがルーターの深刻な脆弱性を修正

TP-Link Patches High-Severity Router Vulnerabilities #SecurityWeek (Mar 27)

www.securityweek.com/tp-link-patc...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
3 days ago
Preview
AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link PwC finds AI is amplifying speed and scale of attacks, as identity theft evolves into a cybercriminal supply chain.

AIは攻撃を加速させるが、サイバーセキュリティにおけるアイデンティティは依然として最大の弱点である

AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link #SecurityWeek (Mar 25)

www.securityweek.com/ai-speeds-at...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
3 days ago
Preview
RSAC 2026 Conference Announcements Summary (Day 2) A summary of the announcements made by vendors on the second day of the RSAC 2026 Conference.

RSAC 2026カンファレンス発表概要(2日目)

RSAC 2026 Conference Announcements Summary (Day 2) #SecurityWeek (Mar 25)

www.securityweek.com/rsac-2026-co...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
3 days ago
Preview
From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.

些細なことから広範なOSS侵害へ:TeamPCPがDocker Hub、VS Code、PyPIを攻撃

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI #SecurityWeek (Mar 25)

www.securityweek.com/from-trivy-t...

0 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
3 days ago
Preview
iOS, macOS 26.4 Roll Out With Fresh Security Patches Apple released security fixes for older devices as well, in iOS 18.7.7, iPadOS 18.7.7, macOS Sequoia 15.7.5, and macOS Sonoma 14.8.5.

iOS, macOS 26.4 Roll Out With Fresh Security Patches - https://mwyr.es/KUwDeAMG #securityweek #infosec

0 1 0 0
Michael Wyres
Michael Wyres
@mwyr.es
4 days ago
Preview
US Prisons Russian Access Broker for Aiding Ransomware Attacks Aleksei Volkov has been sentenced to 81 months in prison for his role in Yanluowang ransomware attacks. 

US Imprisons Russian Access Broker For Aiding Ransomware Attacks - https://mwyr.es/H9QBz8sm #securityweek #infosec

1 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
4 days ago
Preview
Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn An out-of-bounds read vulnerability can be exploited remotely without authentication to read sensitive information from memory.

セキュリティ企業が、Citrix NetScalerの重大な脆弱性が悪用される恐れがあると警告

Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn #SecurityWeek (Mar 24)

www.securityweek.com/critical-cit...

0 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
5 days ago
Preview
Chrome 146 Update Patches High-Severity Vulnerabilities The software refresh fixes eight memory safety bugs affecting seven Chrome components.

Chrome 146 Update Patches High-Severity Vulnerabilities - https://mwyr.es/iypnkLCI #securityweek #infosec

0 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
5 days ago
Preview
Iran Built a Vast Camera Network to Control Dissent. Israel Turned It Into a Targeting Tool The role of Israel’s hijacking of Iran’s street cameras in the killing of the country’s supreme leader underscores how surveillance systems are increasingly being targeted by adversaries in wartime.

Iran Built A Vast Camera Network To Control Dissent. Israel Turned It Into A Targeting Tool - https://mwyr.es/LAuGjsn #securityweek #infosec

0 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
5 days ago
Preview
Stryker Says Malicious File Found During Probe Into Iran-Linked Attack The FBI has published an alert describing the malware used by Iranian government hackers.

Stryker Says Malicious File Found During Probe Into Iran-Linked Attack - https://mwyr.es/EgKajPrR #securityweek #infosec

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
Chip Services Firm Trio-Tech Says Subsidiary Hit by Ransomware The semiconductor company says hackers deployed file-encrypting ransomware on the network of a subsidiary in Singapore.

半導体サービス企業Trio-Tech社、子会社がランサムウェア攻撃を受けたと発表

Chip Services Firm Trio-Tech Says Subsidiary Hit by Ransomware #SecurityWeek (Mar 23)

www.securityweek.com/chip-service...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds The latest M-Trends report is based on insights from over 500,000 hours of Mandiant incident response investigations in 2025.

Mトレンド2026:初期アクセスハンドオフ時間が数時間から22秒に短縮

M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds #SecurityWeek (Mar 23)

www.securityweek.com/m-trends-202...

0 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
5 days ago
Preview
QNAP Patches Four Vulnerabilities Exploited at Pwn2Own  The flaws could allow attackers to access sensitive information, execute code, or cause unexpected behavior.

QNAP Patches Four Vulnerabilities Exploited At Pwn2Own  - https://mwyr.es/2MKkBo9w #securityweek #infosec

0 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
5 days ago
Preview
Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability CVE-2026-21992 can be used without authentication for remote code execution and it may have been exploited in the wild. 

Oracle Releases Emergency Patch For Critical Identity Manager Vulnerability - https://mwyr.es/aErebA3Z #securityweek #infosec

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
Tycoon 2FA Fully Operational Despite Law Enforcement Takedown Attack volumes are back to pre-disruption levels, and the adversary tactics have remained unchanged.

法執行機関による摘発にもかかわらず、Tycoonの2FAは完全に稼働している

Tycoon 2FA Fully Operational Despite Law Enforcement Takedown #SecurityWeek (Mar 23)

www.securityweek.com/tycoon-2fa-f...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
QNAP Patches Four Vulnerabilities Exploited at Pwn2Own The flaws could allow attackers to access sensitive information, execute code, or cause unexpected behavior.

QNAPがPwn2Ownで悪用された4つの脆弱性を修正

QNAP Patches Four Vulnerabilities Exploited at Pwn2Own #SecurityWeek (Mar 23)

www.securityweek.com/qnap-patches...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
5 days ago
Preview
Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability CVE-2026-21992 can be used without authentication for remote code execution and it may have been exploited in the wild.

OracleがIdentity Managerの重大な脆弱性に対する緊急パッチをリリース

Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability #SecurityWeek (Mar 23)

www.securityweek.com/oracle-relea...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
6 days ago
Preview
Thousands of Magento Sites Hit in Ongoing Defacement Campaign The attacks started on February 27 and have targeted e-commerce platforms, global brands, and government services.

進行中の改ざんキャンペーンで数千のMagentoサイトが被害を受ける

Thousands of Magento Sites Hit in Ongoing Defacement Campaign #SecurityWeek (Mar 20)

www.securityweek.com/thousands-of...

0 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
1 week ago
Preview
3 Men Charged With Conspiring to Smuggle US Artificial Intelligence to China The men violated U.S. export controls laws by scheming to divert massive quantities of the high-performance servers assembled in the United States to China.

3 Men Charged With Conspiring To Smuggle US Artificial Intelligence To China - https://mwyr.es/BlJVjOYA #securityweek #infosec

0 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
1 week ago
Preview
Navia Data Breach Impacts 2.7 Million Between late December 2025 and mid-January 2026, hackers stole personal and health plan information from Navia’s environment.

Navia Data Breach Impacts 2.7 Million - https://mwyr.es/srKEU25e #securityweek #infosec

1 0 1 0
Michael Wyres
Michael Wyres
@mwyr.es
1 week ago
Preview
Critical Langflow Vulnerability Exploited Hours After Public Disclosure Because attacker-supplied flow data is used in public flows, the bug leads to unauthenticated remote code execution.

Critical Langflow Vulnerability Exploited Hours After Public Disclosure - https://mwyr.es/y4xl6pqD #securityweek #infosec

1 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
1 week ago
Preview
Russian APT Exploits Zimbra Vulnerability Against Ukraine Insufficient sanitization of CSS content within HTML emails leads to inline script execution when the message is opened in a browser.

Russian APT Exploits Zimbra Vulnerability Against Ukraine - https://mwyr.es/Ks5GM8Ip #securityweek #infosec

0 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
1 week ago
Preview
Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks Amazon found evidence that the FMC software vulnerability has been exploited since late January, and found links to Russia.

Cisco Firewall Vulnerability Exploited As Zero-Day In Interlock Ransomware Attacks - https://mwyr.es/oFh4xtYh #securityweek #infosec

0 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
1 week ago
Preview
Iranian Hackers Likely Used Malware-Stolen Credentials in Stryker Breach The medtech giant has been working on restoring systems affected by the cyberattack conducted by the Handala hackers.

Iranian Hackers Likely Used Malware-Stolen Credentials In Stryker Breach - https://mwyr.es/xAcEoNuZ #securityweek #infosec

1 1 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
Google, Meta, Microsoft Among Signatories of Pact to Combat Scams Several major tech and retail companies have signed an industry accord against online scams and fraud.

Google、Meta、Microsoftなどが詐欺対策協定に署名

Google, Meta, Microsoft Among Signatories of Pact to Combat Scams #SecurityWeek (Mar 17)

www.securityweek.com/google-meta-...

0 0 0 0
キタきつね
キタきつね
@kitafox.bsky.social
1 week ago
Preview
Robotic Surgery Giant Intuitive Discloses Cyberattack The company says some of its internal business applications were accessed after an employee fell victim to a phishing attack.

ロボット手術大手インテュイティブ社がサイバー攻撃を公表

Robotic Surgery Giant Intuitive Discloses Cyberattack #SecurityWeek (Mar 17)

www.securityweek.com/robotic-surg...

0 0 0 0
Michael Wyres
Michael Wyres
@mwyr.es
1 week ago
Preview
Google, Meta, Microsoft Among Signatories of Pact to Combat Scams Several major tech and retail companies have signed an industry accord against online scams and fraud.

Google, Meta, Microsoft Among Signatories Of Pact To Combat Scams - https://mwyr.es/lmZIsNxT #securityweek #infosec

0 0 0 0