惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

T
Threat Research - Cisco Blogs
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
V
Vulnerabilities – Threatpost
GbyAI
GbyAI
P
Proofpoint News Feed
L
LINUX DO - 热门话题
P
Palo Alto Networks Blog
A
About on SuperTechFans
T
Tenable Blog
M
MIT News - Artificial intelligence
IT之家
IT之家
I
Intezer
D
DataBreaches.Net
爱范儿
爱范儿
T
Threatpost
C
CERT Recently Published Vulnerability Notes
云风的 BLOG
云风的 BLOG
博客园 - 三生石上(FineUI控件)
WordPress大学
WordPress大学
K
Kaspersky official blog
大猫的无限游戏
大猫的无限游戏
A
Arctic Wolf
Y
Y Combinator Blog
Cyberwarzone
Cyberwarzone
酷 壳 – CoolShell
酷 壳 – CoolShell
D
Darknet – Hacking Tools, Hacker News & Cyber Security
H
Help Net Security
Microsoft Security Blog
Microsoft Security Blog
Spread Privacy
Spread Privacy
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
AWS News Blog
AWS News Blog
博客园 - 聂微东
C
Check Point Blog
S
Securelist
有赞技术团队
有赞技术团队
雷峰网
雷峰网
aimingoo的专栏
aimingoo的专栏
Last Week in AI
Last Week in AI
Stack Overflow Blog
Stack Overflow Blog
MongoDB | Blog
MongoDB | Blog
D
Docker
G
GRAHAM CLULEY
T
The Exploit Database - CXSecurity.com
C
Cybersecurity and Infrastructure Security Agency CISA
T
Tailwind CSS Blog
L
Lohrmann on Cybersecurity
G
Google Developers Blog
C
Cyber Attacks, Cyber Crime and Cyber Security
L
LangChain Blog

Help Net Security

Manage machine identities: The hidden privileged access layer you need to manage Cybersecurity jobs available right now: May 26, 2026 Anthropic adds 28 security and compliance integrations for Claude Cisco refines its risk-based vulnerability disclosure for the AI era Authorities seize 800 servers used for cyberattacks and disinformation US states step up cyber defenses to protect local communities Lessons for organizations from the Verizon 2026 Data Breach Investigations Report OpenHack: Open-source AI-powered vulnerability research Boards want cyber risk in dollars, not CVE counts Turns out the C-suite loves shadow AI Week in review: GitHub breached via poisoned VS Code extension, critical NGINX flaw exploited $20 per zero-day is already the WordPress plugin reality Deleted Google API keys keep working for up to 23 minutes, researchers warn Kore.ai unveils AI-native platform for enterprise multiagent systems Suspected KimWolf botnet admin arrested over DDoS-for-hire operation Versa extends zero trust principles to AI agents and MCP workflows GitLab 19.0 adds AI workflows, secrets management, and self-hosted model support Proton Pass adds monitored credential sharing for AI agents Keepnet contributes voice and SMS phishing data to the 2026 Verizon DBIR CISA’s new KEV nomination form opens reporting to vendors and researchers Microsoft 365 users targeted by new phishing threat that bypasses MFA Meet Fractal, an OS made for microarchitecture reverse engineering Downtime has become a $600 billion business problem The new economics of fraud: Cheaper, faster, more convincing New infosec products of the week: May 22, 2026 Microsoft open-sources tools for designing and testing AI agents Authorities dismantle First VPN, used by ransomware actors GitHub, Grafana Labs breaches traced back to TanStack supply chain compromise Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498) Virtru centers file collaboration around data-level protection ASAPP expands adversarial testing for enterprise AI systems Tenable Hexa AI automates remediation across attack surfaces Riverbed introduces new Aternity tools for autonomous IT operations Forward launches Predict to test network changes before deployment CTERA brings AI insights and automation for unstructured data Terra adds continuous network exploitation validation to its platform Why AI changed the threat model for travel technology Most dark web activity revolves around a handful of topics AI red teaming agents change how LLMs get tested Product showcase: Bitdefender Mobile Security for iOS protects privacy where scams begin Cyber threats push SMBs to spend more on security Webworm APT targets European government organizations with new backdoors Verizon DBIR: Vulnerability exploitation is the dominant initial access vector NanoCo lands $12 million seed funding, launches enterprise assistant built on NanoClaw FBI: $388 million lost in crypto ATM scams in 2026 ArmorCode gives security teams AI workers for exposure and remediation Novata uses AI to map risk across portfolios and supply chains TeamPCP breached GitHub’s internal codebase via poisoned VS Code extension Trust3 AI focuses on AI agent risks with MCP Security layer Encryption Consulting launches CertSecure Manager v3.3 with zero-touch certificate renewals Darwinium updates mobile SDKs to detect remote access scam activity Microsoft provides mitigation for “YellowKey” BitLocker bypass flaw (CVE-2026-45585) Communicating cyber risk in dollars boards understand CVE Lite CLI: Open-source dependency vulnerability scanner When your AI assistant has the keys to production 7 hard truths security pros should know: 2026 DevOps Threats Report What happens when your identity provider becomes the kill chain PureLogs infostealer is stealing credentials worldwide Selector extends AI-driven observability into multi-cloud environments LaunchDarkly adds real-time controls for AI agents in production Canonical ships Ubuntu Core 26 with 15 years of security maintenance New macOS infostealer impersonates Apple, Microsoft, and Google in a single attack chain The end of unencrypted Discord calls is here Babel Street targets AI-driven threats with new agentic investigation capabilities iProov brings identity verification to video meetings to reduce fraud risks Egnyte unveils Email Capture and AI features to unify fragmented data Public Instagram posts provide raw material for AI phishing campaigns Earbud sensors can authenticate users by their heartbeat, study finds AI infrastructure is cracking under sovereignty demands Cybersecurity jobs available right now: May 19, 2026 AI is drowning software maintainers in junk security reports Game over for 74 suspected scammers after Dutch cops plastered their faces on billboards Attackers are exploiting critical NGINX vulnerability (CVE-2026-42945) SmartBear expands ReadyAPI with AI-powered API testing capabilities Attackers accessed, downloaded code from Grafana Labs’ GitHub 201 arrested in INTERPOL disruption of phishing and fraud networks The AI backdoor your security stack is not built to see Lyrie: Open-source autonomous pentesting agent AI shrinks vulnerability exploitation window to hours Product showcase: McAfee + ChatGPT integration turns doubt into a scam check When ransomware hits, confidence doesn’t restore endpoints Debian 13.5 point release lands with security fixes, bug patches Week in review: Cisco patches SD-WAN 0-day, unpatched Microsoft Exchange Server flaw exploited Google lets Workspace admins apply one policy across all SAML apps Critical MOVEit Automation auth bypass vulnerability fixed (CVE-2026-4670) Penske Logistics launches platform for real-time supply chain visibility DigiCert breached via malicious screensaver file Operant AI Endpoint Protector secures AI agents and MCP tools Owl IRD enables one-way forensic data transfer for incident response teams Multiple threat actors actively exploit cPanel vulnerability (CVE-2026-41940) Blend Autopilot MCP brings AI agent orchestration to lending platforms Two cybersecurity pros get prison time for helping ransomware gang Claude Security enters public beta with Opus 4.7 vulnerability scanning and patching 15-year-old detained over massive data breach at French government agency Lens Agents brings policy control to AI across cloud and desktop Brush shell 0.4.0 tightens script safety, widens platform support Pipelock: Open-source AI agent firewall Spotting third-party cyber risk before attackers do What researchers learned about building an LLM security workflow Your work apps are quietly handing 19 data points to someone
Google sues China-based scammers over Gemini AI abuse
Sinisa Markovic · 2026-06-12 · via Help Net Security

Google has filed a lawsuit against Outsider Enterprise, a China-based cybercrime network for using AI tools, including Gemini, to build phishing websites and scam infrastructure.

Google China cybercrime network

The company said the operation has affected “hundreds of thousands of victims,” with losses estimated in the millions of dollars. It also links the group to more than 9,000 fake websites and 1 million fraudulent URLs.

“Criminals increasingly use AI to make fraud like this more convincing and harder to detect,” noted Brett Leatherman, assistant director of the FBI’s Cyber Division.

During a two-week period in May, Android users flagged 55,000 spam text messages tied to the operation. Google also connected 2.5 million messages sent during the same period to websites generated through Outsider Enterprise infrastructure.

Outsider Enterprise operated through Telegram and distributed phishing kits used in fake package delivery alerts, banking notifications, and account security warnings. The messages directed victims to websites designed to collect credentials and payment information.

The group supplied phishing infrastructure to other criminals, supporting campaigns that impersonated technology companies, mobile carriers, financial institutions, and package delivery services.

Members of the network also used Gemini to help generate code for phishing websites and related scam infrastructure, according to the lawsuit. Google described the case as its first lawsuit involving abuse of its Gemini AI tools.

“We’re filing a lawsuit to dismantle their infrastructure, coordinating with the FBI who will be taking law enforcement actions, and will continue to work with AT&T, T-Mobile and Verizon to block these texts before they reach you,” Google wrote.

“Litigation alone won’t end this. So Google is also advocating for federal legislation to make these protections permanent.”

Earlier this month, Google introduced new AI-powered scam detection features for Android designed to identify suspicious calls and text conversations. The company also said its messaging protections intercept more than 10 billion malicious messages each month.

此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。