Ubuntuの公式Twitterアカウントに、架空のAIエージェントを宣伝し、暗号資産詐欺サイトへ誘導する投稿が行われました(現在は削除済み)。このインシデントは、今月初めに終了したCanonicalのウェブサービスに対する5日間のDDoS攻撃に続くものです。
5月7日の記事公開数時間前に確認されたそのツイートは、Solanaブロックチェーン上に構築された「Numbat」というAIエージェントを発表する内容でした。投稿にはUbuntu 24.04のコードネームである「Noble Numbat」への言及などUbuntuのブランド名が使われ、ai-ubuntu.comというサイトへのリンクが貼られていました。同サイトはCanonicalのデザインを精巧に模倣しており、訪問者に対して「適格性を確認(Check eligibility)」や「Ubuntu AIを探索(Explore Ubuntu AI)」といったボタンをクリックさせ、暗号資産ウォレットの接続を要求するものでした。
AIによるレポート AIによって生成された画像
A critical Linux vulnerability known as CopyFail, tracked as CVE-2026-31431, allows attackers to gain root access on systems running kernels since 2017. Publicly released exploit code has heightened risks for data centers and personal devices. Ubuntu's infrastructure has been offline for over a day due to a DDoS attack, hampering security communications.
Cybersecurity researchers have identified a fraudulent website mimicking the popular AI tool Claude that delivers backdoor malware to visitors. The discovery highlights how cybercriminals are capitalizing on growing interest in artificial intelligence platforms.
AIによるレポート
A crypto security firm used artificial intelligence to detect a high-severity bug in Nethermind, an Ethereum client used by nearly 40% of validators. The flaw, which could have disrupted network operations, was fixed before exploitation. This development highlights AI's growing role in cybersecurity amid recent concerns over AI-generated code vulnerabilities.
Developers are equipping increasingly autonomous AI agents with crypto wallets, enabling them to hold assets, trade tokens, and hire other agents, according to Electric Capital. While the technical infrastructure is advancing, legal frameworks lag behind. At NEARCON 2026, Avichal Garg highlighted the unresolved issues around liability for such non-human entities.
AIによるレポート
Ahead of Idul Fitri, IT expert from Untag Surabaya, Supangat, urges the public to heighten vigilance against scams via WhatsApp and SMS. Rising digital transactions are exploited by cybercriminals. Vida founder Niki Santo Luhur identifies two main methods: phishing and malware prevalent in Indonesia.
Anthropic has limited access to its Claude Mythos Preview AI model due to its superior ability to detect and exploit software vulnerabilities, while launching Project Glasswing—a consortium with over 45 tech firms including Apple, Google, and Microsoft—to collaboratively patch flaws and bolster defenses. The announcement follows recent data leaks at the firm.