SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 25

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Vishing via Microsoft Teams Facilitates DarkGate Malware Intrusion  

Spyware distributed through Amazon Appstore  

BADBOX Botnet Is Back  

Supply Chain Attack on Rspack npm Packages Injects Cryptojacking Malware  

4.5 Million (Suspected) Fake Stars in GitHub: A Growing Spiral of Popularity Contests, Scams, and Malware

Attention-Based Malware Detection Model by Visualizing Latent Features Through Dynamic Residual Kernel Network

A Lightweight Malware Detection Model Based on Knowledge Distillation

Careto is back: what’s new after 10 years of silence?  

“A Digital Prison”: Surveillance and the suppression of civil society in Serbia  

Glutton: A New Zero-Detection PHP Backdoor from Winnti Targets Cybercrimals  

Hidden in Plain Sight: TA397’s New Attack Chain Delivers Espionage RATs  

Analyzing FLUX#CONSOLE: Using Tax-Themed Lures, Threat Actors Exploit Windows Management Console to Deliver Backdoor Payloads

Cyberattack UAC-0125 using the theme “Army+” (CERT-UA#12559)

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, malware)