SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 56
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape
Malware Newsletter
Endgame Gear mouse config tool infected users with malware
Auto-Color Backdoor: How Darktrace Thwarted a Stealthy Linux Intrusion
Sealed Chain of Deception: Actors leveraging Node.JS to Launch JSCeal
Decrypted: FunkSec Ransomware
Threat actor uses AI to create a better crypto wallet drainer
PlayPraetor’s evolving threat: How Chinese-speaking actors globally scale an Android RAT
Plague: A Newly Discovered PAM-Based Backdoor for Linux
Before ToolShell: Exploring Storm-2603’s Previous Ransomware Operations
Attackers Actively Exploiting Critical Vulnerability in Alone Theme
UNC2891 Bank Heist: Physical ATM Backdoor & Linux Forensic Evasion Evasion
Frozen in transit: Secret Blizzard’s AiTM campaign against diplomats
LLM-Based Identification of Infostealer Infection Vectors from Screenshots: The Case of Aurora
Measuring and Explaining the Effects of Android App Transformations in Online Malware Detection
AI-Driven Security for Blockchain-Based Smart Contracts: A GAN-Assisted Deep Learning Approach to Malware Detection
YoloMal-XAI: Interpretable Android Malware Classification Using RGB Images and YOLO11
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – hacking, NEWSLETTER)