これは、情報セキュリティ (InfoSec) に関する世界中の英語の出版物と特許の最新のセレクションです。多数の科学オンラインジャーナルの中から、情報セキュリティ、infosec、ランサムウェア、認証、フィッシング、マルウェア、ファイアウォール、暗号化、侵入検知、侵入防止、ゼロデイ攻撃、多要素認証、公開鍵、秘密鍵、アクセス制御、サービス拒否、ソーシャルエンジニアリング、セキュリティ意識、暗号化、CIA トライアド、アンチウイルス、暗号に分類され、焦点を絞っています。
a multilayer framework for modeling resilience
Published on 2026-07-06 by @OXFORD
Abstract: AbstractOnline crime has evolved from attention-seeking individuals to organized criminal enterprises. Recognizing this fact, we offer a timely application of organizational science to better illuminate modern cybercrime groups. Drawing upon multiple theories, we propose a framework for the resilience of cybercrime entities or Cybercrime-as-a-Service (CaaS), treating them as organizations rather than gangs, forums, or communities. We argue that CaaS groups should be viewed as conventional, commo[...]
Our summary: This paper proposes a multilayer framework for understanding resilience in Cybercrime-as-a-Service (CaaS) organizations. It emphasizes examining five key organizational factors that contribute to the resilience of these entities. The framework integrates network science and discourse analysis to model cybercrime groups as complex social structures.
cybercrime, resilience, organizational theory, network science
Publication
Managing authentication information in textual data from user input
Patent published on the 2026-07-02 in US under Ref US20260189546 by INT BUSINESS MACHINES CORPORATION [US] (Dain Ethan [ca], Kalafut Adrian [ca], Mcpherson Ian [ca], Di Loreto Anthony [ca], Koo Jason [ca])
Abstract: A computer-implemented method for managing authentication information for a user. A processor set intercepts a user input entered by the user. The processor set transmits the textual data from the user input to a software tool for managing passwords in an encrypted fashion. The processor set generates a number of permutations based on the textual data from the user input. The processor set compares each permutation from the number of permutations to a list of passwords stored in the software too[...]
Our summary: A processor intercepts user input and transmits it to a password management tool. It generates permutations of the input and compares them to stored passwords. If the input is identified as authentication information, the user is alerted before transmission.
authentication, encryption, password management, user input
Patent
Device, method, program, and system
Patent published on the 2026-07-02 in WO under Ref WO2026140069 by NTT INC [JP] (Kosuge Haruhisa [jp])
Abstract: A device according to one aspect comprises: a key generation unit that generates a signature key (sk, s, s ) using a public key vk, which has been generated by a key generation algorithm of a trapdoor function, as a verification key vk and using a secret key sk, which has been generated by the key generation algorithm, and a first key s and a second key s , which have been selected from a key space; and a signature generation unit that generates a signature for a message m on the basis of the me[...]
Our summary: A device includes a key generation unit that generates a signature key using a public key and secret key. It also features a signature generation unit that creates a signature for a message based on pseudo-random functions and a hash function. The signature is produced by calculating values until a successful outcome is achieved or a limit is reached.
key generation, signature generation, trapdoor function, pseudo-random function
Patent
Machine learning model security at a processor
Patent published on the 2026-07-02 in US under Ref US20260187254 by ADVANCED MICRO DEVICES INC [US] (Nadarajah Kathirkamanathan [ca], Blinzer Paul [us], Sanghai Kaushal Amolak [us], Subramaniam Akila [us])
Abstract: A processor protects a machine learning model (MLM) from unauthorized access. The processor employs a neural processing unit (NPU) to execute the MLM and implements decryption and encryption processes to decrypt the MLM and re-encrypt the MLM at different points along MLM storage and execution paths. Furthermore, the processor executes the encryption and decryption processes at different processing units and processing engines, thereby reducing the ability of malicious software to access the MLM[...]
Our summary: A processor secures a machine learning model (MLM) using a neural processing unit (NPU). It employs encryption and decryption processes during MLM storage and execution. The processor also protects NPU buffers from unauthorized access to enhance security.
machine learning, model security, neural processing unit, encryption
Patent
Dynamic data state control based on source system signals
Patent published on the 2026-07-02 in US under Ref US20260189563 by YUVARAJ MANASVI [US] (Chandrasekaran Yuvaraj [us], Sundaramani Saranya [us], Yuvaraj Manasvi [us])
Abstract: A system and method for dynamic data state management in distributed systems utilizing real-time signals from dynamic source systems to control data accessibility. The invention leverages signal objects generated by source systems, such as mobile and desktop devices, to dynamically construct access control mechanisms based on temporal constraints, user contexts, and access permissions. These signal objects are transmitted to an application server, where they are analyzed to adjust the states of [...]
Our summary: The invention enables dynamic data state management using real-time signals from source systems. It constructs access control mechanisms based on user contexts and temporal constraints. This approach ensures secure and flexible data access in distributed environments by continuously monitoring and updating data states.
Dynamic data management, real-time signals, access control mechanisms, distributed systems
Patent
Control device for industrial machine
Patent published on the 2026-07-02 in WO under Ref WO2026140056 by FANUC CORP [JP] (Noda Shinichi [jp])
Abstract: The present invention reduces the load on a CPU and increases communication speed by performing communication in plain text when the risk of security violation is low, in accordance with the level of safety of a communication path and without depending on a user s judgment. This control device for an industrial machine is connected to external equipment via a communication path, and comprises: a communication unit for communicating with the external equipment; a communication path determinatio[...]
Our summary: The invention optimizes CPU load and enhances communication speed by using plain text when security risks are low. It includes a communication unit, a safety evaluation unit, and an encryption determination unit. The communication method adapts based on the assessed safety level of the communication path.
control device, industrial machine, communication path, security evaluation
Patent
Protection of custom data and software during transit
Patent published on the 2026-07-02 in US under Ref US20260187262 by DELL PRODUCTS L P [US] (Korubilli Kalyani [in], Rath Sidharth [in], Sethuramachar Srikanth Krishnamurthy [in], Shenoy Ajay [in])
Abstract: [0000] An information handling system may include a physical storage resource with a software component stored thereon. Prior to delivery, the information handling system may be configured to secure access to the software component by: generating a key blob based on seed data; encrypting the software component using the key blob as an encryption key; and storing an encrypted version of the seed data in a certificate. After delivery, the information handling system may be configured to provide ac[...]
Our summary: The system secures software during transit by generating a key blob and encrypting the software component. It stores an encrypted seed data version in a certificate for access control. Upon user verification, it decrypts the seed data, regenerates the key blob, and decrypts the software component.
Data Encryption, Software Security, Key Management, Access Control
Patent
Temporality as a Harmonizing and Extending Factor
Published on 2026-06-10 by @OXFORD
Abstract: AbstractSocial engineering (SE) attacks are among the most prevalent and persistent threats to organizations, carrying severe financial and legal consequences. Despite their severity and frequency, academic discourse addressing countermeasures that organizations can apply to minimize their occurrence remains fragmented, often relying on disparate conceptualizations that limit their practical uptake. In addition, widely recognized cybersecurity frameworks, such as NIST or ISO/IEC ones, broadly ad[...]
Our summary: The study harmonizes social engineering countermeasures using temporality as an analytical lens. It categorizes these measures into six themes and organizes them within a temporal framework. This approach enhances understanding of SE attacks and promotes a dynamic defense-in-depth strategy.
cybersecurity, social engineering, countermeasures, temporality
Publication











