最近相次いで人気ライブラリがサプライチェーン攻撃の被害を受けている。3月24日には、人気のPythonパッケージ「LiteLLM」も被害を受けた。LiteLLMは、ChatGPTやGemini、Claudeなど人気のAPIを手軽に切り替えて使えるとい ...

Security researchers at Malwarebytes have found a fake Windows 11 24H2 update campaign that steals sensitive data from ...

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.

AI chatbots make it possible for people who can’t code to build apps, sites and tools. But it’s decidedly problematic.

Open WebUI has been getting some great updates, and it's a lot better than ChatGPT's web interface at this point.

The Chrome and Edge browsers have built-in APIs for language detection, translation, summarization, and more, using locally ...

This Windows 11 24H2 update download could quietly compromise your system and steal sensitive personal data, putting your system's privacy and security at serious risk.

This week in cybersecurity: 338 new CVEs published including 11 critical severity. 9 vulnerabilities added to CISA KEV catalog. Plus major developments in AI security, supply chain attacks, and ...

The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize ...

Google、AI採用のサイバー防御イニシアチブ発表　「Magika」オープンソース化も Googleは、「防衛者のジレンマ」に対処するための新イニシアチブ「AI Cyber Defense Initiative」の立ち上げを発表した。また、Gmailなどで活用しているAI採用マルウェア検出ツール「Magika」をオープンソース化した。（2024/2/16） ...

PM This week in cybersecurity: botnets, RCE flaws, AI-driven attacks, stealers, and more. Fast, no-fluff roundup.