A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
International Press – Newsletter
Mining Company NioCorp Loses $500,000 in BEC Hack
Inside Black Basta’s Exposed Internal Chat Logs: A Firsthand Look
The Bleeding Edge of Phishing: darcula-suite 3.0 Enables DIY Phishing of Any Brand
The Largest Theft in History – Following the Money Trail from the Bybit Hack
Silent Killers: Unmasking a Large-Scale Legacy Driver Exploitation Campaign
Russian hackers extend olive branch to new FBI director Kash Patel
Processing 23 Billion Rows of ALIEN TXTBASE Stealer Logs
Streamjacking Scams On YouTube Leverage CS2 Pro Player Championships to Defraud Gamers
ALIEN TXTBASE Data Leak: A Deep Analysis of the Breach
DragonForce Ransomware Group is Targeting Saudi Arabia
U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”
UAC-0173 against the Notary Office of Ukraine (CERT-UA#13738)
North Korea Responsible for $1.5 Billion Bybit Hack
Leaked Black Basta Ransomware Chat Logs Reveal Inner Workings and Internal Conflicts
No, you’re not fired – but beware of job termination scams
Disrupting a global cybercrime network abusing generative AI
Malware
DragonForce Ransomware Group is Targeting Saudi Arabia
Massive Botnet Targets M365 with Stealthy Password Spraying Attacks
Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab
The GitVenom campaign: cryptocurrency theft using GitHub
LightSpy Expands Command List to Include Social Media Platforms
Auto-Color: An Emerging and Evasive Linux Backdoor
Anubis: A New Ransomware Threat
PolarEdge: Unveiling an uncovered ORB network
GrassCall malware campaign drains crypto wallets via fake job interviews
Hacking
Indiana Jones: There Are Always Some Useful Ancient Relics
Streamlining vulnerability research with IDA Pro and Rust
First analysis of Apple’s USB Restricted Mode bypass (CVE-2025-24200)
360XSS: Mass Website Exploitation via Virtual Tour Framework for SEO Poisoning
A Disney Worker Downloaded an AI Tool. It Led to a Hack That Ruined His Life
How hackers capture your solar panels and cause grid havoc
Intelligence and Information Warfare
Censorship as a Service | Leak Reveals Public-Private Collaboration to Monitor Chinese Cyberspace
EU sanctions North Korean tied to Lazarus group over involvement in Ukraine war
Disrupting malicious uses of our models: an update February 2025
Ghostwriter | New Campaign Targets Ukrainian Government and Belarusian Opposition
Ghostwriter | New Campaign Targets Ukrainian Government and Belarusian Opposition
Squidoor: Suspected Chinese Threat Actor’s Backdoor Targets Global Organizations
Erudite Mogwai Uses Custom Stowaway to Stealthily Advance Online
Winos 4.0 Spreads via Impersonation of Official Email to Target Users in Taiwan
Belgian prosecutor probes alleged Chinese hacking of intelligence service
Exclusive: Hegseth orders Cyber Command to stand down on Russia planning
Cybersecurity
Trump 2.0 Brings Cuts to Cyber, Consumer Protections
Skybox Security shuts down, lays off 300 employees as Tufin acquires assets
CERT-EU’s Annual Threat Landscape Report 2024
Serbia: Cellebrite halts product use in Serbia following Amnesty surveillance report
Geolocation data brokers: What they do and what happens when they leak
ALIEN TXTBASE Data Leak: A Deep Analysis of the Breach
Signal Adopted by Swedish Armed Forces for Secure Communications
Defending America’s Cyber Defenders
Meta is firing about 20 employees for leaking information
Meta’s undersea cable to be longer than the Earth is round
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, newsletter)
