Internet Security

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 41

April 13, 2025 add comment

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape

Lazarus Expands Malicious npm Campaign: 11 New Packages Add Malware Loaders and Bitbucket Payloads

BadBazaar: iOS and Android Surveillanceware by China’s APT15 Used to Target Tibetans and Uyghurs  

GOFFEE continues to attack organizations in Russia

Atomic and Exodus crypto wallets targeted in malicious npm campaign     

Malicious VSCode extensions infect Windows with cryptominers

Attackers distributing a miner and the ClipBanker Trojan via SourceForge

AkiraBot | AI-Powered Bot Bypasses CAPTCHAs, Spams Websites At Scale

Lookout Mobile Threat Landscape Report – 2024 in Review 

Exploitation of CLFS zero-day leads to ransomware activity     

Governments identify dozens of Android apps bundled with spyware

Newly Registered Domains Distributing SpyNote Malware     

Targeted espionage activity UAC-0226 against innovation centers, government and law enforcement agencies using the GIFTEDCROOK stealer     

Shuckworm Targets Foreign Military Mission Based in Ukraine

Malware analysis assisted by AI with R2AI

Malware Detection in Docker Containers: An Image is Worth a Thousand Logs

A Machine Learning-Based Ransomware Detection Method for Attackers’ Neutralization Techniques Using Format-Preserving Encryption

Effective ML-Based Android Malware Detection and Categorization

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

Leave a Reply

Your email address will not be published. Required fields are marked *

Subscribe to our Newsletter