Security Affairs newsletter Round 566 by Pierluigi Paganini – INTERNATIONAL EDITION
March 08, 2026 
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
International Press – Newsletter
Project Compass: first operational results against The Com network
Creator Of “OnlyFake” Charged And Pleads Guilty To Selling More Than 10,000 Digital Fake Identification Documents
U.S. Attorney’s Office EDNC Announces Seizure of $61 Million Dollars’ Worth of Cryptocurrency
OAuth redirection abuse enables phishing
LastPass Alerts Customers of Fake Email Chains Used in New Phishing Campaign; No Impact to LastPass Systems
Major data leak forum dismantled in global action against cybercrime forum
Global phishing-as-a-service platform taken down in coordinated public-private action
Russian Ransomware Administrator Pleads Guilty to Wire Fraud Conspiracy
FBI arrests suspect linked to $46M crypto theft from US Marshals
Malware
Malware Reverse Engineering is no longer a human problem!
Inside a fake Google security check that becomes a browser RAT
InstallFix: How attackers are weaponizing malvertized install guides
New BoryptGrab Stealer Targets Windows Users via Deceptive GitHub Pages
Hacking
Coruna: The Mysterious Journey of a Powerful iOS Exploit Kit
Claude didn’t just plan an attack on Mexico’s government. It executed one for a month — across four domains your security stack can’t see
OpenClaw Vulnerability: Website-to-Local Agent Takeover
Hundreds of Thousands of Mobile Apps May Now Be Exposing AI Access
Taming Agentic Browsers: Vulnerability in Chrome Allowed Extensions to Hijack New Gemini Panel
Google Confirms CVE-2026-21385 in Qualcomm Android Component Exploited
Streamlining Vulnerability Research with the idalib Rust Bindings for IDA 9.2
Defending the gates: How a global coalition disrupted Tycoon 2FA, a major driver of initial access and large-scale online impersonation
Retaliatory Hacktivist DDoS Activity Following Operation Epic Fury/Roaring Lion
Cisco Warns of More Catalyst SD-WAN Flaws Exploited in the Wild
Intelligence and Information Warfare
StegaBin: 26 Malicious npm Packages Use Pastebin Steganography to Deploy Multi-Stage Credential Stealer
Inside the Fix: Analysis of In-the-Wild Exploit of CVE-2026-21513
Hacked traffic cams and hijacked TVs: How cyber operations supported the war against Iran
UK firms in Middle East face heightened threat from Iran hackers, agency warns
Intelligence firms watch for uptick in Iran cyber activity after US, Israel strikes
Alert: NCSC advises UK organisations to take action following conflict in the Middle East
SloppyLemming Deploys BurrowShell and Rust-Based RAT to Target Pakistan and Bangladesh
Silver Dragon Targets Organizations in Southeast Asia and Europe
Retaliatory Hacktivist DDoS Activity Following Operation Epic Fury/Roaring Lion
Exposing a Russian Campaign Targeting Ukraine Using New Malware Duo: BadPaw and MeowMeow
Dust Specter APT Targets Government Officials in Iraq
Iranian APT Hacked US Airport, Bank, Software Company
Seedworm: Iranian APT on Networks of U.S. Bank, Airport, Software Company
Threat Advisory Special Report: Iranian Threat Actor Group Update
Interplay between Iranian Targeting of IP Cameras and Physical Warfare in the Middle East
UAT-9244 targets South American telecommunication providers with three new malware implants
Cybersecurity
Cyber Battlefield: Ariomex, Iran-Based Crypto Exchange, Suffers Data Leak
Quantum Decryption of RSA Is Much Closer Than Expected
Now is a good time for doing crime
iVerify Details First Known Mass iOS Attack
Meta Ray-Ban Smart Glasses Are Sending Footage of People Having Sex, Undressing, and Using the Bathroom to Workers in Kenya
Look What You Made Us Patch: 2025 Zero-Days in Review
US banks on high alert for cyberattacks as Iran war escalates
White House Unveils President Trump’s Cyber Strategy for America
FBI investigating ‘suspicious’ cyber activity on system holding sensitive surveillance information
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – hacking, newsletter)
