MUST READ

Silent Ransom Group (SRG): Switching To DNS Fast Flux Infrastructure

 | 

Cisco SD-WAN Has a New Root-Level Problem, and There's No Fix Yet

 | 

PCPJack Exposed: Researchers Uncover 230-Node Cloud Email Relay Network

 | 

Fake Context Alignment: The Attack That Made Gemini Obey Strangers Through Your Notifications

 | 

U.S. CISA adds Mirasvit Full Page Cache Warmer flaw to its Known Exploited Vulnerabilities catalog

 | 

Critical Cisco Unified CM Bug Patched as Public Exploit Code Emerges

 | 

Gamaredon Uses WinRAR Vulnerability to Launch Modular Spy Campaign on Ukrainian Targets

 | 

Researcher Drops a New VS Code Zero-Day After Losing Trust in Microsoft's Disclosure Process

 | 

29 Arrests, Nine Crime Groups Dismantled: Another Blow to Illegal Streaming

 | 

Cyber espionage campaign targeted stock exchange executive’s Outlook account

 | 

Russia's FSB Says Foreign Spies Infected Officials' Phones With Malware

 | 

U.S. CISA adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog

 | 

Google Patches Actively Exploited Android Flaw Affecting Millions of Devices

 | 

Why an HP Poly VoIP Phones Bug Could Become an Enterprise Foothold

 | 

Instagram Account Hijacks Expose the Security Risks of AI-Powered Support

 | 

U.S. CISA adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog

 | 

ENISA NIS360 2026: Progress Across the Board, But the Sectors That Matter Most Are Still Falling Short

 | 

GoDaddy found malware on 1,980 WordPress sites using Steam as C2 infrastructure

 | 

Ransomware Operators Keep Business Hours. The Data Proves It

 | 

CVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a Password

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 26

Pierluigi Paganini December 29, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Now You See Me, Now You Don’t: Using LLMs to Obfuscate Malicious JavaScript

Analyzing Malicious Intent in Python Code: A Case Study      

DigiEver Fix That IoT Thing!  

Botnets Continue to Target Aging D-Link Vulnerabilities  

OtterCookie, a new malware used by Contagious Interview  

Lazarus group evolves its infection chain with old and new malware

BellaCPP: Discovering a new BellaCiao variant written in C++  

Recent Cases of Watering Hole Attacks, Part 2

On the Effectiveness of Adversarial Training on Malware Classifiers

Can LLMs Obfuscate Code? A Systematic Analysis of Large Language Models into Assembly Code Obfuscation 

A Paradigm for Modeling Infectious Diseases: Assessing Malware Spread in Early-Stage Outbreaks

A Lightweight Malware Detection Model Based on Knowledge Distillation

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, malware)

you might also like

Pierluigi Paganini May 30, 2026
ShinyHunters Leaks Charter Communications Data, Potentially Impacting 5 Million Customers
Read more
Pierluigi Paganini May 28, 2026
Carnival Data Breach Exposes Personal Data of Nearly 6 Million Customers
Read more

leave a comment

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Silent Ransom Group (SRG): Switching To DNS Fast Flux Infrastructure

Cyber Crime / June 05, 2026

Cisco SD-WAN Has a New Root-Level Problem, and There's No Fix Yet

Security / June 05, 2026

PCPJack Exposed: Researchers Uncover 230-Node Cloud Email Relay Network

Cyber Crime / June 05, 2026

Fake Context Alignment: The Attack That Made Gemini Obey Strangers Through Your Notifications

Artificial Intelligence / June 05, 2026

U.S. CISA adds Mirasvit Full Page Cache Warmer flaw to its Known Exploited Vulnerabilities catalog

Security / June 04, 2026