Security Affairs
U.S. Government Agency Paid $1M to Data Extortion Group Kairos|FBI: TeamPCP Compromised Dev Tools to Steal Cloud Credentials|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|U.S. Government Agency Paid $1M to Data Extortion Group Kairos|FBI: TeamPCP Compromised Dev Tools to Steal Cloud Credentials|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 47

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape 60 Malicious npm Packages Leak Network and Host Data in Active Malware Campaign Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents  Inside a VenomRAT Malware Campaign Fake Google Meet Page Tricks Users into Running PowerShell Malware […]

Security Affairs malware newsletter 2

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape

60 Malicious npm Packages Leak Network and Host Data in Active Malware Campaign

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents 

Inside a VenomRAT Malware Campaign

Fake Google Meet Page Tricks Users into Running PowerShell Malware

Dero miner zombies biting through Docker APIs to build a cryptojacking horde

PyBitmessage Backdoor Malware Installed with CoinMiner 

PumaBot: Novel Botnet Targeting IoT Surveillance Devices    

GreyNoise Discovers Stealthy Backdoor Campaign Affecting Thousands of ASUS Routers  

Mark Your Calendar: APT41 Innovative Tactics

ViciousTrap – Infiltrate, Control, Lure: Turning edge devices into honeypots en masse   

Threat Intelligence NodeSnake Malware Campaign

The Sting of Fake Kling: Facebook Malvertising Lures Victims to Fake AI Generation Website 

Deep Dive into a Dumped Malware without a PE Header

Cybercriminals camouflaging threats as AI tool installers

Mac users beware – fake Ledger apps are being used by hackers to steal seed phrases and hack accounts

Chasing Eddies: New Rust- based InfoStealer used in CAPTCHA campaigns

Enhancing JavaScript Malware Detection through Weighted Behavioral DFAs

Aurora: Are Android Malware Classifiers Reliable under Distribution Shift?

A Transductive Zero-Shot Learning Framework for Ransomware Detection Using Malware Knowledge Graphs

Modeling and Analysis in the Industrial Internet with Dual Delay and Nonlinear Infection Rate

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, malware)