SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 102

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape

Malware Newsletter

OptinMonster supply chain attack hits 1.2 million sites  

Public and Private Medical Community Targeted by China-Nexus Threat Actor Pursuing Artificial Intelligence, Cyber, Medical, and National Defense Research   

Rokarolla : Android Banker with Complete Device Takeover Capabilities  

FishMonger’s arsenal upgraded: SprySOCKS for Windows

Analysis of APT37 NarwhalRAT Leveraging MS-Themed Phishing and Dead-drop C2

The macOS Tahoe artifact that tracks every menu selection a user makes  

easy-day-js: Supply Chain Campaign Targets Mastra npm Packages

WordPress PBN Plugin Drops Dual Webshells via Database Injection     

Hidden in Teams: DragonForce Attackers Weaponize Microsoft Teams Relays to Stay Hidden

Italian Invoice-Themed Phishing Campaign Delivers UpCrypter and NeptuneRAT

Multiple JetBrains IDE plugins caught stealing AI keys

Dozens of malicious wallpapers found on Steam Workshop: gamers’ accounts at risk  

Crypto Clipper uses Tor and worm-like propagation for persistence and control      

Sayonara, SocGholish: Operation Endgame Disrupts Major Cybercrime Operation  

Killing me gently: Inside Gentlemen’s EDR killer framework 

Cognitive Network Intrusion Detection Systems: Anomaly and Malware Detection for Zero-Day Attack Resilience

Multi-View Decompilation for LLM-Based Malware Classification

Anywhere, Any-Stymie: Remote Activation of Trojan Malware on LiDAR with Modulated Signals

Scalable Malware Family Classification Using Quantum Kernel Based Machine Learning

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)