MUST READ

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 82

 | 

Nation-state hack exploited hosting infrastructure to hijack Notepad++ updates

 | 

Security Affairs newsletter Round 561 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

DOJ releases details alleged talented hacker working for Jeffrey Epstein

 | 

Cyberattacks Disrupt Communications at Wind, Solar, and Heat Facilities in Poland

 | 

SmarterTools patches critical SmarterMail flaw allowing code execution

 | 

U.S. CISA adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog

 | 

Empire Market co-founder faces 10 years to life after guilty plea

 | 

SolarWinds addressed four critical Web Help Desk flaws

 | 

Google targets IPIDEA in crackdown on global residential proxy networks

 | 

Nation-state and criminal actors leverage WinRAR flaw in attacks

 | 

OpenSSL issued security updates to fix 12 flaws, including Remote Code Execution

 | 

U.S. CISA adds a flaw in multiple Fortinet products to its Known Exploited Vulnerabilities catalog

 | 

Fortinet patches actively exploited FortiOS SSO auth bypass (CVE-2026-24858)

 | 

PackageGate bugs let attackers bypass protections in NPM, PNPM, VLT, and Bun

 | 

WhatsApp rolls out Strict Account settings to strengthen protection for high-risk users

 | 

Shadowserver finds 6,000+ likely vulnerable SmarterMail servers exposed online

 | 

U.S. CISA adds Microsoft Office, GNU InetUtils, SmarterTools SmarterMail, and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog

 | 

Amnesia RAT deployed in multi-stage phishing attacks against Russian users

 | 

Dormakaba flaws allow to access major organizations’ doors

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 82

Pierluigi Paganini February 02, 2026

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape

Malware Newsletter

KONNI Adopts AI to Generate PowerShell Backdoors  

Who Operates the Badbox 2.0 Botnet?

Weaponized in China, Deployed in India: The SyncFuture Espionage Targeted Campaign

Android Trojan Campaign Uses Hugging Face Hosting for RAT Payload Delivery 

MaliciousCorgi: The Cute-Looking AI Extensions Leaking Code from 1.5 Million Developers

Inside a Multi-Stage Windows Malware Campaign

PeckBirdy: A Versatile Script Framework for LOLBins Exploitation Used by China-aligned Threat Groups

Can’t stop, won’t stop: TA584 innovates initial access  

Dissecting UAT-8099: New persistence mechanisms and regional focus     

Malicious Chrome Extension Performs Hidden Affiliate Hijacking 

Open-Source Python Script Drives Social Media Phishing Campaign 

Energy Sector Incident Report – 29 December 2025 

FARM: Few-shot Adaptive Malware Family Classification under Concept Drift

CAFE-GB: Scalable and Stable Feature Selection for Malware Detection via Chunk-wise Aggregated Gradient Boosting

A Fractional Framework for Modeling Malicious Code Spread in Wireless Sensor NetworksRe-Evaluating Android Malware Detection: Tabular Features, Vision Models, and Ensembles

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – malware, newsletter)

Cybercrime data breach Hacking hacking news information security news IT Information Security malware Pierluigi Paganini Security Affairs Security News

you might also like

Pierluigi Paganini February 02, 2026
Nation-state hack exploited hosting infrastructure to hijack Notepad++ updates
Read more
Pierluigi Paganini February 02, 2026
Security Affairs newsletter Round 561 by Pierluigi Paganini – INTERNATIONAL EDITION
Read more

leave a comment

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 82

Security / February 02, 2026

Nation-state hack exploited hosting infrastructure to hijack Notepad++ updates

Security / February 02, 2026

Security Affairs newsletter Round 561 by Pierluigi Paganini – INTERNATIONAL EDITION

Security / February 02, 2026

DOJ releases details alleged talented hacker working for Jeffrey Epstein

Laws and regulations / January 31, 2026

Cyberattacks Disrupt Communications at Wind, Solar, and Heat Facilities in Poland

APT / January 31, 2026