Security Affairs newsletter Round 519 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs newsletter Round 519 by Pierluigi Paganini – INTERNATIONAL EDITION
April 13, 2025
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
International Press – Newsletter
Unmasking EncryptHub: Help from ChatGPT & OPSEC blunders
PoisonSeed Campaign Targets CRM and Bulk Email Providers in Supply Chain Spam Operation
Palm Coast man linked to ‘Scattered Spider’ cybercrime gang pleads guilty to charges related to cryptocurrency theft
Everest ransomware group’s darknet site offline following defacement
Food giant WK Kellogg discloses data breach linked to Clop ransomware
Cybercriminals Attacked National Social Security Fund of Morocco – Millions of Digital Identities at Risk of Data Breach
Operation Endgame follow-up leads to five detentions and interrogations as well as server takedowns
South African telecom provider serving 7.7 million confirms data leak following cyberattack
Malware
Lazarus Expands Malicious npm Campaign: 11 New Packages Add Malware Loaders and Bitbucket Payloads
BadBazaar: iOS and Android Surveillanceware by China’s APT15 Used to Target Tibetans and Uyghurs
Attackers distributing a miner and the ClipBanker Trojan via SourceForge
AkiraBot | AI-Powered Bot Bypasses CAPTCHAs, Spams Websites At Scale
Lookout Mobile Threat Landscape Report – 2024 in Review
Newly Registered Domains Distributing SpyNote Malware
Hacking
NSA, CISA, FBI, and International Partners Release Cybersecurity Advisory on “Fast Flux,” a National Security Threat
Surge in Palo Alto Networks Scanner Activity Indicates Possible Upcoming Threats
Critical SureTriggers Plugin Vulnerability Exploited within 4 hours
Exploitation of CLFS zero-day leads to ransomware activity
Fortinet – Analysis of Threat Actor Activity
Intelligence and Information Warfare
BeaverTail and Tropidoor Malware Distributed via Recruitment Emails
Hackers Spied on 100 US Bank Regulators’ Emails for Over a Year
How ToddyCat tried to hide behind AV software
Court document reveals locations of WhatsApp victims targeted by NSO spyware
Shuckworm Targets Foreign Military Mission Based in Ukraine
Targeted espionage activity UAC-0226 against innovation centers, government and law enforcement agencies using the GIFTEDCROOK stealer
China Admitted to Volt Typhoon Cyberattacks on US Critical Infrastructure: Report
Cybersecurity
Alan Turing Institute: UK can’t handle a fight against AI-enabled crims
EU answer to Trump may involve data use by Big Tech, France says
Google fixes Android zero-days exploited in attacks, 60 other flaws
WhatsApp Vulnerability Could Facilitate Remote Code Execution
Trump orders probe of former cybersecurity chief for declaring 2020 election secure
Cybersecurity industry falls silent as Trump turns ire on SentinelOne
Cybersecurity Community Must Not Remain Silent On Executive Order Attacking Former CISA Director
Ransomware attack cost IKEA operator in Eastern Europe $23 million
Ex-Meta exec tells Senate Zuck dangled US citizen data in bid to enter China
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – hacking, newsletter)
