MUST READ

Morphisec warns StealC V2 malware spread through weaponized blender files

 | 

CISA: Spyware and RATs used to target WhatsApp and Signal Users

 | 

Harvard reports vishing breach exposing alumni and donor contact data

 | 

Delta Dental of Virginia data breach impacts 145,918 customers

 | 

Attackers deliver ShadowPad via newly patched WSUS RCE bug

 | 

AI attack agents are accelerators, not autonomous weapons: the Anthropic attack

 | 

Scattered Spider alleged members deny TfL charges

 | 

Iberia discloses security incident tied to supplier breach

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 72

 | 

Security Affairs newsletter Round 551 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

SonicWall flags SSLVPN flaw allowing firewall crashes

 | 

BadAudio malware: how APT24 scaled its cyberespionage through supply chain attacks

 | 

U.S. CISA adds an Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities catalog

 | 

CrowdStrike denies breach after insider sent internal screenshots to hackers

 | 

SolarWinds addressed three critical flaws in Serv-U

 | 

Massive data leak hits Italian railway operator Ferrovie dello Stato via Almaviva hack

 | 

Salesforce alerts users to potential data exposure via Gainsight OAuth apps

 | 

Researchers devised a new enumeration technique that exposed 3.5B WhatsApp profiles

 | 

Sturnus: New Android banking trojan targets WhatsApp, Telegram, and Signal

 | 

Coordinated sanctions hit Russian bulletproof hosting providers enabling top ransomware Ops

 | 

StealC V2

Pierluigi Paganini November 25, 2025
Morphisec warns StealC V2 malware spread through weaponized blender files

StealC V2 spread via malicious Blender files on 3D model sites like CGTrader, abusing Blender’s ability to run hidden Python scripts. Cybersecurity firm Morphisec reported that Russian threat actors are spreading StealC V2 infostealer via weaponized Blender files uploaded to 3D model marketplaces like CGTrader. The malware abuses Blender’s ability to run Python scripts for automation […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Morphisec warns StealC V2 malware spread through weaponized blender files

Cyber Crime / November 25, 2025

CISA: Spyware and RATs used to target WhatsApp and Signal Users

Malware / November 25, 2025

Harvard reports vishing breach exposing alumni and donor contact data

Security / November 24, 2025

Delta Dental of Virginia data breach impacts 145,918 customers

Data Breach / November 24, 2025

Attackers deliver ShadowPad via newly patched WSUS RCE bug

Malware / November 24, 2025