Security Affairs
U.S. Government Agency Paid $1M to Data Extortion Group Kairos|FBI: TeamPCP Compromised Dev Tools to Steal Cloud Credentials|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|U.S. Government Agency Paid $1M to Data Extortion Group Kairos|FBI: TeamPCP Compromised Dev Tools to Steal Cloud Credentials|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 35

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. DragonForce Ransomware Group is Targeting Saudi Arabia   Massive Botnet Targets M365 with Stealthy Password Spraying Attacks   Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab ACRStealer Infostealer Exploiting Google Docs as C2   #StopRansomware: Ghost (Cring) Ransomware   […]

Security Affairs malware newsletter 2

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

DragonForce Ransomware Group is Targeting Saudi Arabia  

Massive Botnet Targets M365 with Stealthy Password Spraying Attacks  

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

ACRStealer Infostealer Exploiting Google Docs as C2  

#StopRansomware: Ghost (Cring) Ransomware  

The GitVenom campaign: cryptocurrency theft using GitHub 

Silent Killers: Unmasking a Large-Scale Legacy Driver Exploitation Campaign

Operation SalmonSlalom A new attack targeting industrial organizations in APAC

5 Active Malware Campaigns in Q1 2025

Ghostwriter | New Campaign Targets Ukrainian Government and Belarusian Opposition

LightSpy Expands Command List to Include Social Media Platforms 

Malicious PyPI Package Exploits Deezer API for Coordinated Music Piracy 

Auto-Color: An Emerging and Evasive Linux Backdoor  

Anubis: A New Ransomware Threat  

PolarEdge: Unveiling an uncovered ORB network  

Android trojan TgToxic updates its capabilities

Long Live The Vo1d Botnet: New Variant Hits 1.6 Million TV Globally  

Spyzie stalkerware is spying on thousands of Android and iPhone users  

Erudite Mogwai Uses Custom Stowaway to Stealthily Advance Online     

Ghostwriter | New Campaign Targets Ukrainian Government and Belarusian Opposition   

UAC-0173 against the Notary Office of Ukraine (CERT-UA#13738)

Squidoor: Suspected Chinese Threat Actor’s Backdoor Targets Global Organizations

Winos 4.0 Spreads via Impersonation of Official Email to Target Users in Taiwan

Operation SalmonSlalom

GrassCall malware campaign drains crypto wallets via fake job interviews  

Benchmarking Android Malware Detection: Rethinking the Role of Traditional and Deep Learning Models

MADEA: A Malware Detection Architecture for IoT blending Network Monitoring and Device Attestation

Multimodal Deep Learning for Android Malware Classification

Leveraging Federated Learning for Malware Classification: A Heterogeneous Integration Approach

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, malware)