Tomo (@tomo.gr) — bluesky.baby

この時間に目が覚めて寝れなくなるなど・・・・

14.02.2026 17:30 👍 0 🔁 0 💬 0 📌 0

China’s New Cybersecurity Law Is Here — And It Changes Everything for Businesses China has officially entered a new era of cyber regulation. As of January 1, 2026, the amended China cybersecurity law

中国の新サイバーセキュリティ法が施行、企業にとってすべてが変わる
#CybersecurityNews
thecyberexpress.com/china-cybers...

04.01.2026 05:55 👍 11 🔁 3 💬 0 📌 0

How to Integrate AI into Modern SOC Workflows

How to Integrate AI into Modern SOC Workflows

30.12.2025 11:29 👍 0 🔁 1 💬 0 📌 0

Critical Vulnerability in SmarterMail Let Attackers Execute Remote Code

Critical Vulnerability in SmarterMail Let Attackers Execute Remote Code

30.12.2025 12:19 👍 0 🔁 1 💬 0 📌 0

RSAC2026行きたいけど今期の予算がなーってなってるのに、帰国を来期にして来期の予算につけるという暴挙をする話が流れてきて、ええええってなってる。

20.12.2025 14:06 👍 0 🔁 0 💬 0 📌 0

React2Shell flaw exploited to breach 30 orgs, 77k IP addresses vulnerable Over 77,000 Internet-exposed IP addresses are vulnerable to the critical React2Shell remote code execution flaw (CVE-2025-55182), with researchers now confirming that attackers have already compromised over 30 organizations across multiple sectors.

React2Shell flaw exploited to breach 30 orgs, 77k IP addresses vulnerable

06.12.2025 19:18 👍 4 🔁 2 💬 0 📌 0

MSIgniteがAI一色。

セキュリティで小規模MSSPが生き残れる未来が想像できなくなったのでキャリアチェンジすべきか真剣に悩み中

18.11.2025 19:35 👍 0 🔁 0 💬 0 📌 0

a SQL query なのか an SQL queryなのか。みんなはどっち?

28.09.2025 14:05 👍 0 🔁 0 💬 0 📌 0

Hackers hijack npm packages with 2 billion weekly downloads in supply chain attack In what is being called the largest supply chain attack in history, attackers have injected malware into NPM packages with over 2.6 billion weekly downloads after compromising maintainers' accounts in a phishing attack.

In what is being called the largest supply chain attack in history, attackers have injected malware into NPM packages with over 2.6 billion weekly downloads after compromising maintainers' accounts in a phishing attack.

08.09.2025 12:48 👍 20 🔁 10 💬 3 📌 9

Hackers steal 3,325 secrets in GhostAction GitHub supply chain attack A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, GitHub tokens, Cloudflare, and AWS keys.

A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, GitHub tokens, Cloudflare, and AWS keys.

08.09.2025 15:54 👍 14 🔁 8 💬 0 📌 2

Fortinet Releases Patch for Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257)

Fortinet Releases Patch for Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257)

11.07.2025 16:01 👍 1 🔁 1 💬 0 📌 0

Let's Encrypt Started to Issue SSL/TLS Certificate for IP Address

Let’s Encrypt Started to Issue SSL/TLS Certificate for IP Address

03.07.2025 13:17 👍 0 🔁 1 💬 0 📌 0

Scattered Spider Attacks US Airlines – The MSP Cyber News Snapshot – July 3rd From courtroom breaches to cockpit infiltration, here’s this week’s Cyber Snapshot. Five critical stories you need on your radar, with safety advice included. We’ve got insider revenge, MFA manipulation, rogue browser extensions, and state-sponsored email theft, all in one rapid-fire rundown. Whether you’re in IT, cybersecurity compliance, or just trying to keep your team one […] The post Scattered Spider Attacks US Airlines – The MSP Cyber News Snapshot – July 3rd appeared first on Heimdal Security Blog .

Scattered Spider Attacks US Airlines – The MSP Cyber News Snapshot – July 3rd

03.07.2025 13:23 👍 2 🔁 2 💬 0 📌 0

二要素って言い方はあまりしないかも、多要素（Multi Factor Authentication）の方がおすすめ

パスワードを使わない場合でも・・・

・ TPM搭載デバイスを保有していること
・デバイスの認証を持っていること

など、複数の要素を認証しているので・・・・

01.07.2025 22:40 👍 0 🔁 0 💬 1 📌 0

Over 1,000 SOHO Devices Hacked in China-linked LapDogs Cyber Espionage Campaign

Over 1,000 SOHO Devices Hacked in China-linked LapDogs Cyber Espionage Campaign

27.06.2025 16:31 👍 0 🔁 1 💬 0 📌 0

参加してきました
ウクライナCERT人気だった

27.06.2025 22:48 👍 0 🔁 0 💬 0 📌 0

Scattered Spider hackers shift focus to aviation, transportation firms Hackers associated with Scattered Spider tactics have expanded their targeting to the aviation and transportation industries after previously attacking insurance and retail sectors

Hackers associated with Scattered Spider tactics have expanded their targeting to the aviation and transportation industries after previously attacking insurance and retail sectors

27.06.2025 14:21 👍 7 🔁 7 💬 0 📌 0

Scattered Spider Taps CFO Credentials in 'Scorched Earth' Attack In a recent intrusion, the notorious cybercriminal collective accessed CyberArk vaults and obtained more 1,400 secrets, subverted Azure, VMware, and Snowflake environments, and for the first known time, actively fought back against incident response teams.

Scattered Spider Taps CFO Credentials in 'Scorched Earth' Attack

27.06.2025 19:26 👍 0 🔁 1 💬 0 📌 0

今月のアレにコペンハーゲン行く人いるだろうか

15.06.2025 11:56 👍 0 🔁 0 💬 0 📌 0

思いっきり色々使える、おうちサーバーになりそう
（TRとかXeonではないので、小規模だけど）

26.04.2025 09:13 👍 0 🔁 0 💬 0 📌 0

U.S. Govt. Funding for MITRE's CVE Ends April 16, Cybersecurity Community on Alert CVE funding ends April 16, risking delays in vulnerability tracking, advisories, and cyber response tools.

息を呑んで見守っている。

thehackernews.com/2025/04/us-g...

16.04.2025 11:39 👍 0 🔁 1 💬 0 📌 0

According to Ransomware.live, qilin ransomware group has added SMC Corporation (🇯🇵) to its victims.

17.03.2025 09:38 👍 0 🔁 1 💬 0 📌 0

🚨Cyberattack Alert ‼️

🇪🇺🇯🇵 - SMC Corporation

Qilin hacking group claims to have breached the European branch of SMC Corporation.

Allegedly, 1.1 TB (552,000 files) of data were exfiltrated.

17.03.2025 10:06 👍 3 🔁 2 💬 0 📌 0