Security
- Critical Security Vulnerability in React Server Components – React
- Security Advisory
- Simplified developer access to AWS with ‘aws login’ | AWS Security Blog
- 【libxml2】libxml2プロジェクトは放棄されました #Security – Qiita
- AWS announces flat-rate pricing plans for website delivery and security – AWS
- UNC5174のWindows版マルウェアSNOWLIGHT – IIJ Security Diary
- GMO Flatt Security Blog
- OWASP Top 10 2025 Released: Major Revisions and Two New Security Classes Added
- The 4TB time bomb: when EY’s cloud went public (and what it taught us) | Neo Security | Neo Security
- Security Vulnerabilities fixed in Firefox 144.0.2 — Mozilla
- 著作権侵害通知を装ったメールを用いた情報窃取型マルウェア配布キャンペーン – wizSafe Security Signal -安心・安全への道標- IIJ
- wizSafe Security Signal 2025年8月 観測レポート – wizSafe Security Signal -安心・安全への道標- IIJ
- ArcGIS Server Feature Services Security Patch
- Security Advisory: CVE-2025-49844 | Redis
- How Cloudflare’s client-side security made the npm supply chain attack a non-event
- Oracle Security Alerts CVE-2025-61882
- Apply Oracle Security Alert CVE-2025-61882 for Oracle E-Business Suite (EBS) | security
- Red Hat confirms security incident after hackers breach GitLab instance
- 2025年に確認されたBlackTechのマルウェアKivarsの亜種 – IIJ Security Diary
- KUSANAGI Security Editionに新機能「KUSANAGI SafeUpgrade」搭載 ~96%がサポート切れとなっているnginxの無停止でのメジャーバージョンアップに対応~ – プライム・ストラテジー – CMSマネージドサービス
- JVNVU#93161789: OpenSSLにおける複数の脆弱性(OpenSSL Security Advisory [30th September 2025])
- 著作権侵害通知を装ったメールを用いた情報窃取型マルウェア配布キャンペーン – wizSafe Security Signal -安心・安全への道標- IIJ
- サポート詐欺サイトへのアクセス増加に伴う注意喚起 – wizSafe Security Signal -安心・安全への道標- IIJ
- SBテクノロジー、「Cloudflare Application Security」のセキュリティ監視サービスを提供開始 | SBテクノロジー (SBT)
- JVNVU#93913883: Daikin Europe N.V.製Security Gatewayに脆弱なパスワードリカバリの問題
- Safe in the sandbox: security hardening for Cloudflare Workers
- UltiMaker Introduces Secure Line from the S series, Defense-Grade 3D Printing for High-Security, On-Demand Production – UltiMaker
- You don’t need quantum hardware for post-quantum security
- OWASP MASTG – OWASP Mobile Application Security
- OWASP Application Security Verification Standard (ASVS) | OWASP Foundation
- OWASP MASVS – OWASP Mobile Application Security
- Data, privacy, and security for Azure OpenAI Service – Azure AI services | Microsoft Learn
- UNC5325と関係するTINYSHELLベースの新しいLinux用マルウェア – IIJ Security Diary
- Why XSS still matters: MSRC’s perspective on a 25-year-old threat | MSRC Blog | Microsoft Security Response Center
- ChatGPT Agent – XSS on file://home/oai/redirect.html · Advisory · google/security-research · GitHub
- ChatGPT, Claude, & Gemini security scanning with Cloudflare CASB
- LAC Security Insight 第13号 2025 夏 JSOC EDR監視で観測したインシデント事例 | LAC WATCH
- Amazon EC2 defenses against L1TF Reloaded | AWS Security Blog
- Security Vulnerabilities fixed in Firefox 142 — Mozilla
- SharePoint の脆弱性 CVE-2025-53770 に関するお客様向けガイダンス | MSRC Blog | Microsoft Security Response Center
- postMessaged and Compromised | MSRC Blog | Microsoft Security Response Center
- Unicornを使ったマルウェア解析の効率化 – IIJ Security Diary
- 2025 年 8 月のセキュリティ更新プログラム (月例) | MSRC Blog | Microsoft Security Response Center
- Security Advisory
- How Microsoft defends against indirect prompt injection attacks | MSRC Blog | Microsoft Security Response Center
- AWS Security Hub での露出の検出結果を使用したセキュリティリスクの優先順位付け | Amazon Web Services ブログ
- Customer guidance for SharePoint vulnerability CVE-2025-53770 | MSRC Blog | Microsoft Security Response Center
- Customer guidance for SharePoint vulnerability CVE-2025-53770 | MSRC Blog | Microsoft Security Response Center
- TorNetとPureHVNCを実行する新種のローダーの調査 – IIJ Security Diary
- Rising star: Meet Dylan, MSRC’s youngest security researcher | MSRC Blog | Microsoft Security Response Center
- 新しい AWS Security Hub でセキュリティを統合し、リスクの優先順位付けと大規模な対応を実現 (プレビュー) | Amazon Web Services ブログ
- RedirectionGuard: Mitigating unsafe junction traversal in Windows | MSRC Blog | Microsoft Security Response Center
- ドメイン押収後のLummaStealerの動向 – IIJ Security Diary
- ランサムウェアNailaoLockerの調査 – IIJ Security Diary
- Chairs’ statement on G7 Cybersecurity Working Group meeting – Canadian Centre for Cyber Security
- G7_Statement_on_IoT_Security.pdf
- Akamai Addresses DNS Security and Compliance Challenges with Industry-First DNS Posture Management | Akamai
- Security Vulnerabilities fixed in Firefox 139.0.4 — Mozilla
- 2025 年 6 月のセキュリティ更新プログラム (月例) | MSRC Blog | Microsoft Security Response Center
- Microsoft Copilot zero-click attack raises alarms about AI agent security | Fortune
- Android Security Bulletin—June 2025 | Android Open Source Project
- Security updates 1.6.11 and 1.5.10 released
- Lumma Stealer: Breaking down the delivery techniques and capabilities of a prolific infostealer | Microsoft Security Blog
- LAC Security Insight 第12号 2025 春 ペネトレーションテストから見る脅威の傾向 | LAC WATCH
- Security Vulnerabilities fixed in Firefox 139 — Mozilla
- Palo Alto Networks Cortex XSIAM Delivers Industry’s First AI-Driven SecOps Platform to Span Proactive and Reactive Security – Palo Alto Networks
- JVNVU#91298012: OpenSSL x509アプリケーションにおける、拒否設定の代わりに信頼設定を付加してしまう問題(OpenSSL Security Advisory [22nd May 2025])
- Security Vulnerabilities fixed in Thunderbird 138.0.2 — Mozilla
- Cloudflare named a Strong Performer in Email Security by Forrester
- LummaStealerがTake downされるまでの活動状況 – IIJ Security Diary
- Announcing a new strategic collaboration to bring clarity to threat actor naming | Microsoft Security Blog
- JVNVU#91298012: OpenSSL x509アプリケーションにおける、拒否設定の代わりに信頼設定を付加してしまう問題(OpenSSL Security Advisory [22nd May 2025])
- Security Vulnerabilities fixed in Thunderbird 128.10.1 — Mozilla
- Vulnerability transparency: strengthening security through responsible disclosure
- JVNVU#96140980: OpenSSLのPOLY1305 MAC実装におけるWindows上のXMMレジスタが破損する問題(Security Advisory [8th September 2023])
- Security Vulnerabilities fixed in Firefox 138 — Mozilla
- Security Advisory
- JAWS DAYS 2025で180人に聞いた!AWSのセキュリティ課題ランキング – GMO Flatt Security Blog
- Google Online Security Blog: Google announces Sec-Gemini v1, a new experimental cybersecurity model
- Security Advisory
- Security vulnerability fixed in Firefox 137.0.2 — Mozilla
- Security Bulletin – April 15 2025 | Atlassian Support | Atlassian Documentation
- GMO Flatt Security、セキュリティAIエージェント 「Takumi」リリース | GMOインターネットグループ株式会社
- Joomla 5.2.6 Security Release
- Security Vulnerabilities fixed in Firefox 137 — Mozilla
- CVE-2025-26512 Privilege Escalation Vulnerability in SnapCenter | NetApp Product Security
- Google Online Security Blog: Google announces Sec-Gemini v1, a new experimental cybersecurity model
- Model Context Protocol (MCP) and Security
- Security Vulnerability fixed in Firefox 136.0.4, Firefox ESR 128.8.1, Firefox ESR 115.21.1 — Mozilla
- Google Online Security Blog: Google announces Sec-Gemini v1, a new experimental cybersecurity model
- Microsoft unveils Microsoft Security Copilot agents and new protections for AI | Microsoft Security Blog
- マイクロソフト、AIエージェントがセキュリティ対応を自動化。Security Copilotエージェント群を発表 – Publickey
- Phishing campaign impersonates Booking .com, delivers a suite of credential-stealing malware | Microsoft Security Blog
- MasterCard DNS Error Went Unnoticed for Years – Krebs on Security
- GitHub – Splinter0/CrossCheck: A tool to test cross-device authentication protocol security
- InfoStealerの閲覧履歴の窃取における盲点 – IIJ Security Diary
- Cloudforce One · Cloudflare Security Center docs
- Cyber Security Report – NTT | Security Holdings
- Google Online Security Blog: Announcing OSV-Scanner V2: Vulnerability scanner and remediation tool for open source
- 2025-03 Out-of-Cycle Security Bulletin: Junos OS: A local attacker with shell access can execute arbitrary code (CVE-2025-21590)