
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
International Press – Newsletter
Healthcare Data Breach: Cybercriminals Attacked Health Insurance Agency in Ecuador
Foxconn confirms cyberattack impacting North American factories
Cops arrest man suspected of being Dream Market kingpin
Our response to the TanStack npm supply chain attack
Malware
JDownloader site hacked to replace installers with Python RAT malware
New TrickMo Variant: Device Take Over malware targeting Banking, Fintech, Wallet & Auth apps
Threat Actor Mr_Rot13 Actively Exploits CVE-2026-41940 for Backdoor Deployment
This is what some the world’s largest banks of malware look like stacked as hard drives
Popular node-ipc npm Package Infected with Credential Stealer
Hacking
AI Vulnerability Research and the Fuzzer Era Déjà Vu: Why the Numbers Are Only Half the Story
Behind the Scenes Hardening Firefox with Claude Mythos Preview
Mythos finds a curl vulnerability
NGINX Rift: Achieving NGINX Remote Code Execution via an 18-Year-Old Vulnerability
Microsoft Vibing — capturing screenshots and voice samples without governance
Pwn2Own 2026 Capacity Overflow, Hackers Drop 0-Days Solo
Mythos finds a curl vulnerability
CVE-2025-32975: The Open Directory Behind the KACE SMA Breach and 60+ Downstream Victims
GhostLock — Lockout Without Encryption
Fragnesia: Linux Kernel Local Privilege Escalation via ESP-in-TCP
CVE-2026-20182: Critical authentication bypass in Cisco Catalyst SD-WAN Controller (FIXED)
Two more public disclosures, it will never stop
Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild
Pwn2Own Berlin 2026: Day Three Results and Master of Pwn
Intelligence and Information Warfare
‘Disposable spies’: Poland records unprecedented number of Russian espionage cases
Revealed: Israeli Tech Exposes Users of Musk’s Starlink Satellite-based Internet
FamousSparrow APT Targets Azerbaijani Oil and Gas Industry
FrostyNeighbor: Fresh mischief and digital shenanigans
Gamaredon’s infection chain: Spoofed emails, GammaDrop and GammaLoad
What BO Team is hiding: the ZeronetKit backdoor from the inside and connections to Head Mare
Kazuar: Anatomy of a nation-state botnet
Cybersecurity
Meta can read your Instagram DMs starting Friday. One step could protect you
NHS to grant Palantir contractors ‘unlimited access’ to patient data
The May 2026 Security Update Review
US govt seeks Instructure testimony on massive Canvas cyberattack
Welcome to the vulnpocalypse, as vendors use AI to find bugs and patches multiply like rabbits
Is the SOC Obsolete, and We Just Haven’t Admitted It Yet?
MPs want social media treated more like unsafe toys than harmless apps
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, newsletter)



