ポッドキャスト収録用のメモですよ。

podcast - #セキュリティのアレ - ゆるーいセキュリティのポッドキャストですよ。

---

• 事件、事故
  • 欧米の法執行機関の協力により Archetyp Market を摘発
  • 米司法省が投資詐欺に関連する$225M 相当の暗号資産を押収
• 攻撃、脅威
  • Citizen Lab と Google がロシアの攻撃者グループによるアプリパスワードを悪用するフィッシングキャンペーンについて報告
  • Cisco Talos が北朝鮮の攻撃者グループ Famous Chollima による攻撃活動について報告
  • 奇安信の Xlab と NICT がそれぞれ RapperBot の活動について報告
  • Cloudflare が過去最大規模の 7.3 Tbps の DDoS 攻撃を観測
• 脆弱性
  • CISA が Known Exploited Vulnerabilities (KEV) カタログに 2+1 個の脆弱性を追加
• その他
  • トランプ大統領が TikTok 禁止法案の施行をさらに 90日間延期 (3回目)
  • NICT が 2025年第 1 四半期の NICTER観測統計を公開

事件、事故

欧米の法執行機関の協力により Archetyp Market を摘発

(6/16) Europe-wide takedown hits longest-standing dark web drug market | Europol

Law enforcement authorities across Europe have dismantled ‘Archetyp Market’, the most enduring dark web marketplace, following a large-scale operation involving six countries, supported by Europol and Eurojust.

米司法省が投資詐欺に関連する$225M 相当の暗号資産を押収

(6/18) Office of Public Affairs | United States Files Civil Forfeiture Complaint Against $225M in Funds Involved in Cryptocurrency Investment Fraud Money Laundering | United States Department of Justice

The Department of Justice filed a civil forfeiture complaint today in the U.S. District Court for the District of Columbia against more than $225.3 million in cryptocurrency. According to the complaint, law enforcement used blockchain analysis and other investigative techniques to determine that the cryptocurrency is connected to the theft and laundering of funds from victims of cryptocurrency investment fraud schemes, commonly referred to as “cryptocurrency confidence scams.”

攻撃、脅威

Citizen Lab と Google がロシアの攻撃者グループによるアプリパスワードを悪用するフィッシングキャンペーンについて報告

(6/18) Same Sea, New Phish: Russian Government-Linked Social Engineering Targets App-Specific Passwords - The Citizen Lab

(6/19) What’s in an ASP? Creative Phishing Attack on Prominent Academics and Critics of Russia | Google Cloud Blog

Cisco Talos が北朝鮮の攻撃者グループ Famous Chollima による攻撃活動について報告

(6/18) Famous Chollima deploying Python version of GolangGhost RAT

奇安信の Xlab と NICT がそれぞれ RapperBot の活動について報告

(6/19) Botnets Never Die: Analysis of the RapperBot Botnet

(6/19) DVRを狙うRapperBotの最新動向 - NICTER Blog

Cloudflare が過去最大規模の 7.3 Tbps の DDoS 攻撃を観測

(6/19) Defending the Internet: how Cloudflare blocked a monumental 7.3 Tbps DDoS attack

In mid-May 2025, Cloudflare blocked the largest DDoS attack ever recorded: a staggering 7.3 terabits per second (Tbps). This comes shortly after the publication of our DDoS threat report for 2025 Q1 on April 27, 2025, where we highlighted attacks reaching 6.5 Tbps and 4.8 billion packets per second (pps). The 7.3 Tbps attack is 12% larger than our previous record and 1 Tbps greater than a recent attack reported by cyber security reporter Brian Krebs at KrebsOnSecurity.

脆弱性

CISA が Known Exploited Vulnerabilities (KEV) カタログに 2+1 個の脆弱性を追加

(6/16) CISA Adds Two Known Exploited Vulnerabilities to Catalog | CISA https://www.cisa.gov/news-events/alerts/2025/06/16/cisa-adds-two-known-exploited-vulnerabilities-catalog

• CVE-2025-43200 Apple Multiple Products Unspecified Vulnerability
• CVE-2023-33538 TP-Link Multiple Routers Command Injection Vulnerability

(6/17) CISA Adds One Known Exploited Vulnerability to Catalog | CISA https://www.cisa.gov/news-events/alerts/2025/06/17/cisa-adds-one-known-exploited-vulnerability-catalog

• CVE-2023-0386 Linux Kernel Improper Ownership Management Vulnerability

その他

トランプ大統領が TikTok 禁止法案の施行をさらに 90日間延期 (3回目)

(6/19) Further Extending the TikTok Enforcement Delay – The White House

NICT が 2025年第 1 四半期の NICTER観測統計を公開

(6/20) NICTER観測統計 - 2025年1月～3月 - NICTER Blog