Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape
Ransomware Gangs Collapse as Qilin Seizes Control
Dissecting a Python Ransomware distributed through GitHub repositories
SparkKitty, SparkCat’s little brother: A new Trojan spy found in the App Store and Google Play
Uncovering a Tor-Enabled Docker Exploit
Threat Actors Modify and Re-Create Commercial Software to Steal Users’ Information
Resurgence of the Prometei Botnet
ConnectUnwise: Threat actors abuse ConnectWise as builder for signed malware
Hive0154 aka Mustang Panda shifts focus on Tibetan community to deploy Pubload backdoor
OneClik: A ClickOnce-Based APT Campaign Targeting Energy, Oil and Gas Infrastructure
SadFuture: Mapping XDSpy latest evolution
FreeType Zero-Day Found by Meta Exploited in Paragon Spyware Attacks
UAC-0001 (APT28) Cyber Attacks on Government Agencies Using BEARDSHELL and COVENANT
DeepSeek Deception: Sainbox RAT & Hidden Rootkit Delivery
Cryptominers’ Anatomy: Shutting Down Mining Botnets
Another Wave: North Korean Contagious Interview Campaign Drops 35 New Malicious npm Packages
Analysis of the latest attack activities of APT-C-06 (DarkHotel) using BYOVD technology
Unmasking A New China-Linked Covert ORB Network: Inside the LapDogs Campaign
Enhancing Malware Detection via RGB Assembly Visualization and Hybrid Deep Learning Models
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, newsletter)
Source: SecurityAffairs
Source Link: https://securityaffairs.com/179429/breaking-news/security-affairs-malware-newsletter-round-51.html