サイバーセキュリティニュース: Tenable レポートがクラウドの脆弱性を指摘、Google が連邦政府を装った親ロシア派ハッカーを摘発
Check out highlights from Tenable’s “2025 Cloud Security Risk Report,” which delves into the critical risk from insecure cloud configurations. Plus, Google reveals a Russia-sponsored social engineering campaign that targeted prominent academics’ Gmail accounts. And get the latest on AI system securi...
サイバーセキュリティニュース: NIST がゼロトラスト導入に関するアドバイスを提供、 OpenAI が ChatGPT の悪用事例を公開
Check out NIST best practices for adopting a zero trust architecture. Plus, learn how OpenAI disrupted various attempts to abuse ChatGPT. In addition, find out what Tenable webinar attendees said about their exposure management experiences. And get the latest on cyber crime trends, a new cybersecuri...
新たなサイバーセキュリティに関する大統領令が知っておくべきこと
A new cybersecurity Executive Order aims to modernize federal cybersecurity with key provisions for post-quantum encryption, AI risk and secure software development....
サイバーセキュリティニュース: AI システムセキュリティの新基準が発表、サイバーセキュリティチームがビジネスプロジェクトの価値を高めることが調査で判明
Check out ETSI’s new global standard for securing AI systems and models. Plus, learn how CISOs and their teams add significant value to orgs’ major initiatives. In addition, discover what webinar attendees told Tenable about their cloud security challenges. And get the latest on properly decommissio...
サイバーセキュリティニュース: AI データセキュリティのベストプラクティスが公開、新たなフレームワークは IT プロフェッショナルのサイバースキル習得を支援
Check out expert recommendations for protecting your AI system data. Plus, boost your IT department’s cybersecurity skills with a new interactive framework. In addition, learn about a malware campaign targeting critical infrastructure orgs. And get the latest on Russian cyber espionage and on a NIST...
サイバーセキュリティニュース: レポートはオープンソース AI の将来性とリスク、および新しい暗号化手法を強調
Check out a study that outlines the risks and benefits of open-source AI tools. Meanwhile, the NCSC unpacks use cases for new, alternative encryption technologies. Plus, ISACA urges orgs to begin their post-quantum cryptography migration. And get the latest on assessing software products’ security; ...
Frequently Asked Questions About Vibe Coding
Vibe coding has attracted much attention in recent weeks with the release of many AI-driven tools. This blog answers some of the Frequently Asked Questions (FAQ) around vibe coding....
MCP プロンプト インジェクション: セキュリティ対策にも利用可能
MCP tools are implicated in several new attack techniques. Here's a look at how they can be manipulated for good, such as logging tool usage and filtering unauthorized commands....
サイバーセキュリティニュース: NIST がプライバシーとサイバーセキュリティのフレームワークを調整、研究者らは生成 AI コードジェネレーターによる幻覚のリスクについて警告
Check out NIST’s effort to further mesh its privacy and cyber frameworks. Plus, learn why code-writing GenAI tools can put developers at risk of package-confusion attacks. Also, find out what Tenable webinar attendees said about identity security. And get the latest on the MITRE CVE program and on a...
MCP(Model Context Protocol)と AI エージェントアプリケーションとの統合に関するよくある質問
The emergence of Model Context Protocol for AI is gaining significant interest due to its standardization of connecting external data sources to large language models (LLMs). While these updates are good news for AI developers, they raise some security concerns. In this blog we address FAQs about MC...
サイバーセキュリティニュース: SANS が AI システムのサイバーセキュリティ対策のための 6 つのコントロールを推奨、 NCSC が時代遅れの API セキュリティ手法について警告
Check out the security controls that SANS Institute says are essential for protecting your AI systems. Plus, the U.K. NCSC urges organizations to adopt newer API security practices. In addition, CISA and other cyber agencies warn that attackers are using “fast flux” techniques to conceal their actio...
サイバーセキュリティニュース: NIST が AI に対するサイバー攻撃手法を公開し、防御策を推奨、ETSI が量子耐性暗号標準を発行
Check out NIST’s comprehensive taxonomy of cyberattacks against AI systems, along with mitigation recommendations. Plus, organizations have another cryptographic algorithm for protecting data against future quantum attacks. And get the latest on the IngressNightmare vulnerabilities, and on cyber ris...