SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 65

Pierluigi Paganini
October 05, 2025

Malware Newsletter

Smash and Grab: Aggressive Akira Campaign Targets SonicWall VPNs, Deploys Ransomware in an Hour or Less

First Malicious MCP in the Wild: The Postmark Backdoor That’s Stealing Your Emails

EvilAI Operators Use AI-Generated Code and Fake Apps for Far-Reaching Attacks

Phantom Taurus: A New Chinese Nexus APT and the Discovery of the NET-STAR Malware Suite

SVG Phishing hits Ukraine with Amatera Stealer, PureMiner

CABINETRAT backdoor used by UAC-0245 for targeted cyberattacks against SOU (CERT-UA#17479)

Klopatra: exposing a new Android banking trojan operation with roots in Turkey

Check Your Socks – A Deep Dive into soopsocks PyPI Package

New spyware campaigns target privacy-conscious Android users in the UAE

Rhadamanthys 0.9.x – walk through the updates

Detour Dog: DNS Malware Powers Strela Stealer Campaigns

Cavalry Werewolf raids Russia’s public sector with trusted relationship attacks

Confucius Espionage: From Stealer to Backdoor

Zero-Day Ransomware Attack Detection Using Static Portable Executable Header Features

Robust Hashing for Improved CNN Performance in Image-Based Malware Detection

Evaluating the Robustness of a Production Malware Detection System to Transferable Adversarial Attacks

Defending against Stegomalware in Deep Neural Networks with Permutation Symmetry

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

facebook
linkedin
twitter

Cybercrime
data breach
Hacking
hacking news
information security news
IT Information Security
malware
Newsletter
Pierluigi Paganini
Security Affairs
Security News

Two Breaches. Millions Exposed. A Guide For Those Who’ve Been Hacked

OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

A Hacker Accidentally Broke Into the FBI’s Epstein Files

‘A classic honeypot’: Movie fans catching up on Best Picture nominees targeted by dangerous malware ahead of of Oscars 2026

ForceMemo: Hundreds of GitHub Python Repos Compromised via Account Takeover and Force-Push

Storm-2561 lures victims to spoofed VPN sites to harvest corporate logins

AI-generated malware Slopoly used in Interlock ransomware attacks

Geopolitical risk shocks S&P 500 as Goldman warns of oil-driven GDP drag

Geopolitical expert Adelle Nazarian on how Iran war is going to benefit US-India ties

The Sahel Information War: How Propaganda Is Redrawing Geopolitical Influence In West Africa

Market still relatively calm despite geopolitical tensions, says Jefferies David Zervos

Global Markets | Markets in Turmoil? François Rochon’s ‘corporate masterpiece’ strategy offers a timeless

Global Markets | European shares log second week of losses as Mideast war fuels inflation fears

Oil prices in the driving seat as energy shock upends global markets

War Shock Sends Global Markets Into Frenzy as Oil Surge Triggers Investor Panic

Lady Lake Police make first arrest using new technology

European companies warn EU leaders: reduced reliance on US tech could hurt profitability

Breast Acoustic CT Scanner Receives FDA 510(k) Clearance

Navy bolsters platforms with 5G, eyes ship-to-ship connections

Centre working to limit impact of global conflicts; Cong creating panic: PM Modi

Global Conflicts Drive Fuel Costs, Boosting EV Demand

UM students forced to cancel spring break plans due to global conflicts

Why traveler anxiety is ‘up a notch’ this spring break season

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 65

‘A classic honeypot’: Movie fans catching up on Best Picture nominees targeted by dangerous malware ahead of of Oscars 2026

Two Breaches. Millions Exposed. A Guide For Those Who’ve Been Hacked

OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers