Kaspersky says the attacks use phishing, GitHub-hosted payloads, CVE-2025-9491 LNK abuse, and Go2Tunnel-based tunneling.
ランサムウェア攻撃の全てを自動実行するAIエージェントが確認されました。サーバー侵入やデータ破壊だけでなく、失敗した手順をリアルタイムで修正して再突入する様子も見られたそうです。
人工知能(AI)が自律的にハッキングを行なえるようになったときの脅威として、核ミサイルの発射コードの窃取や銀行口座残高の改ざんなど、悪夢のようなシナリオがしばしば語られる。
本コーナー「開発者と読み解くAIの世界」では、AIアプリ開発に携わるエンジニアより寄稿いただき、開発者目線でみる生成AIの面白さや活用法、開発現場のリアルをお伝えします。 本連載では以前、Anthropicのコーディングエージェント「Claude ...
Security tooling is not written in a single language. Python powers most automation. C sits at the exploit layer. PowerShell ...
The Gaslight macOS malware from a North Korean cluster doesn't bypass AI analysis platforms yet, but its 38-message prompt injection cascade makes the direction of travel clear. Here's why this ...
Open-source agentic coding model Ornith-1.0, released today under the MIT license, uses a self-improving reinforcement ...
Modern cybersecurity operations depend on fast, reliable data movement across cloud, on-premises and hybrid environments. Security teams collect data from security information and event management ...
As AI tools flood open-source maintainers with low quality bug reports, OpenAI's new Patch the Planet initiative aims to filter out the noise and fix real threats.
Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...
A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI supply chain risks. Organizations using vulnerable versions of the Hugging ...