MUST READ

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 97

 | 

Security Affairs newsletter Round 577 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Attackers exploit Funnel Builder bug to inject e-skimmers into e-stores

 | 

Pwn2Own Berlin 2026, Day Three: DEVCORE Crowned Master of Pwn, $1.298 Million Total

 | 

U.S. CISA adds a flaw in Microsoft Exchange Server to its Known Exploited Vulnerabilities catalog

 | 

OpenAI hit by supply chain attack linked to malicious TanStack packages

 | 

Pwn2Own Berlin 2026, Day Two: $385,750 more, Microsoft Exchange falls, and the running total crosses $900K

 | 

CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day

 | 

Ghostwriter group resumes attacks on Ukrainian Government targets

 | 

Researchers uncover YellowKey and GreenPlasma Windows Zero-Days

 | 

Pwn2Own Berlin 2026, Day One: $523,000 paid out, AI products fall

 | 

U.S. CISA adds a flaw in Cisco Catalyst SD-WAN  to its Known Exploited Vulnerabilities catalog

 | 

Linux Kernel bug Fragnesia allows local root access attacks

 | 

Broadcom releases VMware Fusion security update for root access bug

 | 

NGINX Rift: an 18-year-old flaw in the world's most deployed web server just came to light

 | 

FamousSparrow targets Azerbaijani energy sector in multi-wave espionage campaign

 | 

Nitrogen Ransomware claims massive data theft from Foxconn

 | 

Microsoft Patch Tuesday for May 2026 fix 138 bugs, some of them are alarming

 | 

OpenLoop Health confirms January 2026 Data breach affecting 716,000

 | 

Quest KACE SMA flaw CVE-2025-32975: when one unpatched tool opens the door to 60 organizations

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 97

Pierluigi Paganini May 17, 2026

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape

Malware Newsletter

JDownloader site hacked to replace installers with Python RAT malware    

New TrickMo Variant: Device Take Over malware targeting Banking, Fintech, Wallet & Auth apps  

Threat Actor Mr_Rot13 Actively Exploits CVE-2026-41940 for Backdoor Deployment  

Operation HumanitarianBait Uses Fake Aid Documents to Deploy Python Spyware  

Mini Shai-Hulud Is Back: npm Worm Hits over 160 Packages, including Mistral and Tanstack  

This is what some the world’s largest banks of malware look like stacked as hard drives 

Popular node-ipc npm Package Infected with Credential Stealer  

FamousSparrow APT Targets Azerbaijani Oil and Gas Industry

FrostyNeighbor: Fresh mischief and digital shenanigans      

Gamaredon’s infection chain: Spoofed emails, GammaDrop and GammaLoad

What BO Team is hiding: the ZeronetKit backdoor from the inside and connections to Head Mare 

TeamPCP’s Mini Shai-Hulud Is Back: A Self-Spreading Supply Chain Attack Compromises TanStack npm Packages

Kazuar: Anatomy of a nation-state botnet  

Critical FunnelKit vulnerability threatens 40,000+ WooCommerce checkouts  

Memory Forensics Techniques for Automated Detection and Analysis of Go Malware

Diagnosing and Mitigating Domain Shift in Permission-Based Android Malware Detection

Evolving IoT Botnet Threats and Practical Honeypot Observation: A Summary Review and Experimental Study

Systematic Evaluation of Machine Learning and Deep Learning Models for IoT Malware Detection Across Ransomware, Rootkit, Spyware, Trojan, Botnet, Worm, Virus, and Keylogger

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

Cybercrime data breach Hacking hacking news information security news IT Information Security malware Newsletter Pierluigi Paganini Security Affairs Security News

you might also like

Pierluigi Paganini May 17, 2026
Security Affairs newsletter Round 577 by Pierluigi Paganini – INTERNATIONAL EDITION
Read more
Pierluigi Paganini May 17, 2026
Attackers exploit Funnel Builder bug to inject e-skimmers into e-stores
Read more

leave a comment

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 97

Security / May 17, 2026

Security Affairs newsletter Round 577 by Pierluigi Paganini – INTERNATIONAL EDITION

Security / May 17, 2026

Attackers exploit Funnel Builder bug to inject e-skimmers into e-stores

Cyber Crime / May 17, 2026

Pwn2Own Berlin 2026, Day Three: DEVCORE Crowned Master of Pwn, $1.298 Million Total

Hacking / May 17, 2026

U.S. CISA adds a flaw in Microsoft Exchange Server to its Known Exploited Vulnerabilities catalog

Hacking / May 16, 2026