MUST READ

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 85

 | 

Security Affairs newsletter Round 564 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

U.S. CISA adds RoundCube Webmail flaws to its Known Exploited Vulnerabilities catalog

 | 

PayPal discloses extended data leak linked to Loan App glitch

 | 

North Korean IT worker scam nets Ukrainian five-year sentence in the U.S.

 | 

FBI warns of surge in ATM Jackpotting, $20 Million lost in 2025

 | 

Red Card 2.0: INTERPOL busts scam networks across Africa, seizes millions

 | 

PromptSpy abuses Gemini AI to gain persistent access on Android

 | 

Germany’s national rail operator Deutsche Bahn hit by a DDoS attack

 | 

U.S. CISA adds Dell RecoverPoint and GitLab flaws to its Known Exploited Vulnerabilities catalog

 | 

CISA alerts to critical auth bypass CVE-2026-1670 in Honeywell CCTVs

 | 

Irish regulator probes X after Grok allegedly generated sexual images of children

 | 

Intellexa’s Predator spyware infected Angolan journalist’s device, Amnesty reports

 | 

French Ministry confirms data access to 1.2 Million bank accounts

 | 

Notepad++ patches flaw used to hijack update system

 | 

VS Code extensions with 125M+ installs expose users to cyberattacks

 | 

China-linked APT weaponized Dell RecoverPoint zero-day since 2024

 | 

U.S. CISA adds Google Chromium CSS, Microsoft Windows, TeamT5 ThreatSonar Anti-Ransomware, and Zimbra flaws to its Known Exploited Vulnerabilities catalog

 | 

Keenadu backdoor found preinstalled on Android devices, powers Ad fraud campaign

 | 

SmartLoader hackers clone Oura MCP project to spread StealC malware

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 85

Pierluigi Paganini February 22, 2026

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape

Malware Newsletter

Ninja Browser & Lumma Infostealer  

Ghost Tapped: Tracking the Rise of Chinese Tap-to-pay Android Malware  

Hudson Rock Identifies Real-World Infostealer Infection Targeting OpenClaw Configurations  

Divide and conquer: how the new Keenadu backdoor exposed links between major Android botnets

PromptSpy ushers in the era of Android threats using GenAI  

Android.Phantom Trojans infiltrate smartphones through games and pirated mods of popular apps. They use machine learning and video streams to manipulate clicks    

MIMICRAT: ClickFix Campaign Delivers Custom RAT via Compromised Legitimate Websites  

Increase in Malware Enabled ATM Jackpotting Incidents Across United States    

NFCShare Android Trojan: NFC card data theft via malicious APK

From BRICKSTORM to GRIMBOLT: UNC6201 Exploiting a Dell RecoverPoint for Virtual Machines Zero-Day

SmartLoader Clones Oura Ring MCP to Deploy Supply Chain Attack

Journalism under attack: Predator spyware in Angola

Image-Based Malware Classification Using DCGAN-Augmented Data and a CNN–Transformer Hybrid Model

A Unified Evaluation of Learning-Based Similarity Techniques for Malware DetectionLoRA-based Parameter-Efficient LLMs for Continuous Learning in Edge-based Malware Detection

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – malware, newsletter)

Cybercrime data breach Hacking hacking news information security news IT Information Security malware Pierluigi Paganini Security Affairs Security News

you might also like

Pierluigi Paganini February 22, 2026
Security Affairs newsletter Round 564 by Pierluigi Paganini – INTERNATIONAL EDITION
Read more
Pierluigi Paganini February 21, 2026
U.S. CISA adds RoundCube Webmail flaws to its Known Exploited Vulnerabilities catalog
Read more

leave a comment

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 85

Malware / February 22, 2026

Security Affairs newsletter Round 564 by Pierluigi Paganini – INTERNATIONAL EDITION

Breaking News / February 22, 2026

U.S. CISA adds RoundCube Webmail flaws to its Known Exploited Vulnerabilities catalog

Security / February 21, 2026

PayPal discloses extended data leak linked to Loan App glitch

Data Breach / February 20, 2026

North Korean IT worker scam nets Ukrainian five-year sentence in the U.S.

Cyber Crime / February 20, 2026