Pierluigi Paganini March 09, 2025

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

International Press – Newsletter

Cybercrime

U.S. Authorities Seize $31 Million Related to Uranium Finance Hack  

10 Ways Cybercrime Impacts Business  

Infostealer Campaign against ISPs

Nigerian Man Extradited to the United States to Face Computer Intrusion and Theft Charges  

Russian crypto exchange Garantex seized by law enforcement operation  

Employee at Multinational DVD Company Charged with Stealing, Selling Pre-Release Commercial DVDs for Blockbuster Films  

Data breach at Japanese telecom giant NTT hits 18,000 companies

New DDoS Botnet Discovered: Over 30,000 Hacked Devices, Majority of Observed Activity Traced to Iran

Malware

Cellebrite zero-day exploit used to target phone of Serbian student activist  

Uncovering .NET Malware Obfuscated by Encryption and Virtualization  

Black Basta and Cactus Ransomware Groups Add BackConnect Malware to Their Arsenal

Fingerprint Heists: How your browser fingerprint can be stolen and used by fraudsters

Medusa Ransomware Hits 40+ Victims in 2025, Demands $100K–$15M Ransom

Hacking

Havoc: SharePoint with Microsoft Graph API turns into FUD C2 

Jailbreaking to Jailbreak  

VMware Security Flaws Exploited in the Wild—Broadcom Releases Urgent Patches

Thousands of websites hit by four backdoors in 3rd party JavaScript attack

Camera off: Akira deploys ransomware via webcam  

Flights to D.C. airport received false collision alerts while landing

AI’s Role in Turning Massive Data Leaks into Hacker Paydays: A Look at the Orange Breach    

Intelligence and Information Warfare

CISA: No Change on Defending Against Russian Cyber Threats  

Call It What You Want: Threat Actor Delivers Highly Targeted Multistage Polyglot Malware  

Polish space agency confirms cyberattack

Silk Typhoon targeting IT supply chain

The evolution of Dark Caracal tools: analysis of a campaign featuring Poco RAT  

Lotus Blossom espionage group targets multiple industries with different versions of Sagerunex and hacking tools 

10 Chinese Nationals Charged With Large-Scale Hacking Of U.S. And International Victims On Behalf Of The Chinese Government    

New DOGE Staffer Has Ties to a Sanctioned Russian Oligarch     

CIA director says US has paused sharing intelligence with Ukraine  

Cybersecurity

The biggest data breaches of 2025 — so far  

Investigations announced into how social media and video sharing platforms use UK children’s personal information  

“Bad Romance”: How Kaspersky Lab Failed to Conquer the Western Cybersecurity Market

Google Patches Pair of Exploited Vulnerabilities in Android  

Organizations Still Not Patching OT Due to Disruption Concerns: Survey

New AI-Powered Scam Detection Features to Help Protect You on Android

Who is the DOGE and X Technician Branden Spikes?  

Quantum computers threaten to break online security in minutes, expert warns    

ENISA NIS360 2024 

Catalan court says NSO Group executives can be charged in spyware investigation  

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)