Pierluigi Paganini February 23, 2025

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

International Press – Newsletter

Cybercrime

Amsterdam police dismantle digital criminal network; 127 servers taken offline 

Another Lizard Arrested, Lizard Lair Hacked 

X Phishing | Campaign Targeting High Profile Accounts Returns, Promoting Crypto Scams 

StaryDobry ruins New Year’s Eve, delivering miner instead of presents  

How Phished Data Turns into Apple & Google Wallets  

US Army soldier pleads guilty to AT&T and Verizon hacks  

Thailand ready to welcome 7,000 trafficked scam call center victims back from Myanmar

B1ack’s Stash Releases 1 Million Credit Cards on a Deep Web Forum

Malware

You’ve Got Malware: FINALDRAFT Hides in Your Drafts  

Telegram Abused as C2 Channel for New Golang Backdoor  

Infostealing Malware Infections in the U.S. Military & Defense Sector: A Cybersecurity Disaster in the Making  

Analyzing ELF/Sshdinjector.A!tr with a Human and Artificial Analyst  

Training Approach for Long Short-Term Memory Network Classifier

Hacking

whoAMI: A cloud image name confusion attack

Xerox Versalink C7025 Multifunction Printer: Pass-Back Attack Vulnerabilities (FIXED)

How Hackers Manipulate Agentic AI with Prompt Engineering        

Palo Alto Networks tags new firewall bug as exploited in attacks  

Bybit Confirms Record-Breaking $1.46 Billion Crypto Heist in Sophisticated Cold Wallet Attack

Intelligence and Information Warfare

Multiple Russian Threat Actors Targeting Microsoft Device Code Authentication  

Earth Preta Mixes Legitimate and Malicious Components to Sidestep Detection 

Signals of Trouble: Multiple Russia-Aligned Threat Actors Actively Targeting Signal Messenger

Backdoored Executables for Signal, Line, and Gmail Target Chinese-Speaking Users  

Spanish spyware startup Mollitiam Industries shuts down

DOGE Now Has Access to the Top US Cybersecurity Agency    

Meet NailaoLocker: a ransomware distributed in Europe by ShadowPad and PlugX backdoors  

Weathering the storm: In the midst of a Typhoon  

We need a new doctrine for Cyberdefence  

Cybersecurity

EFF Sues OPM, DOGE and Musk for Endangering the Privacy of Millions  

Protecting Global Data Privacy: The Urgent Need for Encryption Safeguards

X is reportedly blocking links to secure Signal contact pages      

Qualys TRU Discovers Two Vulnerabilities in OpenSSH: CVE-2025-26465 & CVE-2025-26466 

Nearly 10% of employee gen AI prompts include sensitive data 

Signals of Trouble: Multiple Russia-Aligned Threat Actors Actively Targeting Signal Messenger  

Apple Removes Cloud Encryption Feature From UK After Backdoor Order  

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)