MUST READ

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 75

 | 

Security Affairs newsletter Round 554 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Experts found an unsecured 16TB database containing 4.3B professional records

 | 

Germany calls in Russian Ambassador over air traffic control hack claims

 | 

U.S. CISA adds Google Chromium and Sierra Wireless AirLink ALEOS flaws to its Known Exploited Vulnerabilities catalog

 | 

Emergency fixes deployed by Google and Apple after targeted attacks

 | 

Notepad++ fixed updater bugs that allowed malicious update hijacking

 | 

Elastic detects stealthy NANOREMOTE malware using Google Drive as C2

 | 

U.S. CISA adds an OSGeo GeoServer flaw to its Known Exploited Vulnerabilities catalog

 | 

Critical Gogs zero-day under attack, 700 servers hacked

 | 

GeminiJack zero-click flaw in Gemini Enterprise allowed corporate data exfiltration

 | 

Google fixed a new actively exploited Chrome zero-day

 | 

Pro-Russia Hacktivist Support: Ukrainian Faces US Charges

 | 

Fortinet fixed two critical authentication-bypass vulnerabilities

 | 

New EtherRAT backdoor surfaces in React2Shell attacks tied to North Korea

 | 

U.S. CISA adds Microsoft Windows and WinRAR flaws to its Known Exploited Vulnerabilities catalog

 | 

Microsoft Patch Tuesday security updates for December 2025 fixed an actively exploited zero-day

 | 

Ivanti warns customers of new EPM flaw enabling remote code execution

 | 

Broadside botnet hits TBK DVRs, raising alarms for maritime logistics

 | 

Polish Police arrest 3 Ukrainians for possessing advanced hacking tools

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 75

Pierluigi Paganini December 14, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape

Malware Newsletter

UDPGangster Campaigns Target Multiple Countries

Ransomware Trends in Bank Secrecy Act Data Between 2022 and 2024 

Return of ClayRat: Expanded Features and Techniques 

SEEDSNATCHER : Dissecting an Android Malware Targeting Multiple Crypto Wallet Mnemonic Phrases

New FvncBot Android banking trojan targets Poland     

Cydome Research Team Identified “Broadside”, A New Mirai Botnet Variant,  Active In The Wild  

JS#SMUGGLER: Multi-Stage – Hidden Iframes, Obfuscated JavaScript, Silent Redirectors & NetSupport RAT Delivery  

Latest Contagious Interview malware campaign abuses Microsoft VSCode Tasks  

EtherRAT: DPRK uses novel Ethereum implant in React2Shell attacks

PeerBlight Linux Backdoor Exploits React2Shell CVE-2025-55182  

Gogs 0-Day Exploited in the Wild

NANOREMOTE, cousin of FINALDRAFT

Hamas-Affiliated Ashen Lepus Targets Middle Eastern Diplomatic Entities With New AshTag Malware Suite      

SetcodeRat Exposed: A Telegram Secret Stealing Trojan Customized for Chinese-speaking Regions

PyStoreRAT: A New AI-Driven Supply Chain Malware Campaign Targeting IT & OSINT Professionals  

AMOS Stealer Exploits AI Trust: Malware Delivered Through ChatGPT and Grok  

ByteShield: Adversarially Robust End-to-End Malware Detection through Byte Masking

Command & Control (C2) Traffic Detection Via Algorithm Generated Domain (Dga) Classification Using Deep Learning And Natural Language Processing

MaSS-Droid: Android Malware Detection Framework Using Multi-Layer Feature Screening and Stacking Integration

Adaptive Volcano Support Vector Machine (AVSVM) for Efficient Malware Detection

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

you might also like

Pierluigi Paganini December 14, 2025
Security Affairs newsletter Round 554 by Pierluigi Paganini – INTERNATIONAL EDITION
Read more
Pierluigi Paganini December 14, 2025
Experts found an unsecured 16TB database containing 4.3B professional records
Read more

leave a comment

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 75

Malware / December 14, 2025

Security Affairs newsletter Round 554 by Pierluigi Paganini – INTERNATIONAL EDITION

Breaking News / December 14, 2025

Experts found an unsecured 16TB database containing 4.3B professional records

Data Breach / December 14, 2025

Germany calls in Russian Ambassador over air traffic control hack claims

APT / December 13, 2025

U.S. CISA adds Google Chromium and Sierra Wireless AirLink ALEOS flaws to its Known Exploited Vulnerabilities catalog

Security / December 13, 2025