Pierluigi Paganini
September 28, 2025
Malware Newsletter
Brewing Trouble — Dissecting a macOS Malware Campaign
Prompts as Code & Embedded Keys | The Hunt for LLM-Enabled Malware
The Chameleon’s Trap: Inside the Top 3 Exploit Thriving on 60% of Unpatched MS Office Systems
YiBackdoor: A New Malware Family With Links to IcedID and Latrodectus
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
How RainyDay, Turian and a new PlugX variant abuse DLL search order hijacking
Mapping the Infrastructure and Malware Ecosystem of MuddyWater
ShadowV2: An emerging DDoS for hire botnet
Another BRICKSTORM: Stealthy Backdoor Enabling Espionage into Tech and Legal Sectors
RedNovember Targets Government, Defense, and Technology Organizations
Malware Analysis Report RayInitiator & LINE VIPER
XCSSET evolves again: Analyzing the latest updates to XCSSET’s inventory
Bearlyfy: The Evolution of a New Ransomware Group and Its Connection to PhantomCore
Updated BO Team Grouping Tools
Deniability by Design: DNS-Driven Insights into a Malicious Ad Network
Defending against Stegomalware in Deep Neural Networks with Permutation Symmetry
CyberSOCEval: Benchmarking LLMs Capabilities for Malware Analysis and Threat Intelligence Reasoning
DCmal-2025: A Novel Routing-Based DisConnectivity Malware—Development, Impact, and Countermeasures
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, newsletter)
Cybercrime
data breach
Hacking
hacking news
information security news
IT Information Security
malware
Newsletter
Pierluigi Paganini
Security Affairs
Security News
