Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape
Malware Newsletter
Hunt.io Exposes and Analyzes ERMAC V3.0 Banking Trojan Full Source Code Leak
Evolution of the PipeMagic backdoor: from the RansomExx incident to CVE-2025-29824
Supply Chain Risk in Python: Termncolor and Colorinal Explained
Noodlophile Stealer Evolves: Targeted Copyright Phishing Hits Enterprises with Social Media Footprints
Dissecting PipeMagic: Inside the architecture of a modular backdoor framework
GodRAT – New RAT targeting financial institutions
Preventing Domain Resurrection Attacks
Patching for persistence: How DripDropper Linux malware moves through the cloud
Finding Malware: DIRTYBULK and Friends – USB Infections To Fuel Cybercriminal Coinmining Operations
Falcon Platform Prevents COOKIE SPIDER’s SHAMOS Delivery on macOS
SaMOSA: Sandbox for Malware Orchestration and Side-Channel Analysis
Evasive Ransomware Attacks Using Low-level Behavioral Adversarial Examples
Demystifying the Role of Rule-based Detection in AI Systems for Windows Malware
Automated Malware Source Code Generation via Uncensored LLMs and Adversarial Evasion of Censored Model
Cyber-Attacks on Energy Infrastructure—A Literature Overview and Perspectives on the Current Situation
APT36: Targets Indian BOSS Linux Systems with Weaponized AutoStart Files
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – hacking, NEWSLETTER)
