Fake Claude Code installer malware used Google Ads to place spoofed AI tool pages above real documentation since March 2026.

米Microsoftは6月2日（現地時間）、開発者向けカンファレンス「Build 2026」で、「Coreutils for ...

Perplexity launches Bumblebee: How its new read-only dev scanner differs from Chainguard ...

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.

A threat actor tracked as DriveSurge has been operating large-scale malware distribution campaigns using ClickFix and ...

Windows Centralは5月26日(米国時間)、Windows 11バージョン25H2および24H2向けのプレビュー更新プログラム「KB5089573」がリリースされたと伝えた。Windows 11の応答性向上を目指す「Windows ...

「Computer ...

A sneaky IAB operation uses a malicious traffic distribution system (TDS) to redirect visitors of trusted websites to ones ...

Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On May 28, 2026, a single threat actor operating under the newly created maintainer alias vpmdhaj (a39155771 ...

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...

OpenAIのコーディングエージェント「Codex」にはPCを自動操作できる「Computer Use」という機能が備わっています。これまではComputer ...