Pierluigi Paganini
June 07, 2026
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
International Press – Newsletter
Silent Ransom Group (SRG): Uncovering DNS Fast Flux Infrastructure
Legitimate-Looking Codex Remote UI Secretly Steals Your AI Tokens
29 arrested as law enforcement strikes criminal networks behind illegal streaming
Operation FlutterBridge: macOS Malvertising Campaign Spreads New FlutterShell Backdoor
Scam Center Strike Force Announces Results of U.S. & Private Industry “Disruption Week”
PCPJack Hijacked 230 AWS, GCP, and Azure Servers to Run a Hidden SMTP Relay Network
Cybercriminals Are Targeting the FIFA World Cup 2026
Malware
Malware Targeting WordPress Abuses Steam Community Profiles for Command & Control Operations
Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages
shrun, apiwatcher, and argus: three malware analysis tools built with Claude
Operation XENOFISCAL: SideCopy deploying persistent XenoRAT targeting the MoF, Afghanistan
Hacking
CIFSwitch: a non-universal Linux local root vulnerability
Microsoft’s stance on zero day exploits is a dumpster fire of their own making
Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited
1-Click GitHub Token Stealing via a VSCode Bug
PCPJack Hijacked 230 AWS, GCP, and Azure Servers to Run a Hidden SMTP Relay Network
Critical vulnerability in Mirasvit Cache Warmer for Magento
Gemini’s Secret Affair: Exploiting Gemini Voice Assistant Through Instant Messaging Apps
ZEC Crashes 38% as Zcash Discloses ‘Critical Counterfeiting Vulnerability’
Intelligence and Information Warfare
Exclusive: US military personnel are being targeted using location data, Pentagon letter shows
Espionage Campaign Targeted Stock Exchange Executive for Five Months
Russian spies are aggressively seeking Western technology as sanctions bite, officials say
FSB’s matryoshka #1/3 – Gamaredon’s gifts that keeps unpacking – GammaPhish and GammaWorm
UAC-0184: From HTA to a Signed Network Stack
TA4922: The Suspected Chinese Crime Group is Going Global
The FBI Remotely Reset Thousands of Routers Hijacked by the GRU
VerdantBamboo: Just Another BRICKSTORM in the Firewall
Cybersecurity
Ransomware runs office hours: what 16,699 leak posts reveal
PROMOTING ADVANCED ARTIFICIAL INTELLIGENCE INNOVATION AND SECURITY
Instagram is alerting users who were targeted by hackers during AI chatbot attacks
AI in the Breach: How an Adversary Leveraged AI to Target a Water Utility’s OT
Microsoft accused of leaking Dutch civil servants’ names to U.S. government
Bot web traffic has overtaken human web traffic, data shows
NSA said to be readying Anthropic’s Mythos for use in cyber operations
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, newsletter)
