Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape
Malware Newsletter
KONNI Adopts AI to Generate PowerShell Backdoors
Who Operates the Badbox 2.0 Botnet?
Weaponized in China, Deployed in India: The SyncFuture Espionage Targeted Campaign
Android Trojan Campaign Uses Hugging Face Hosting for RAT Payload Delivery
MaliciousCorgi: The Cute-Looking AI Extensions Leaking Code from 1.5 Million Developers
Inside a Multi-Stage Windows Malware Campaign
PeckBirdy: A Versatile Script Framework for LOLBins Exploitation Used by China-aligned Threat Groups
Can’t stop, won’t stop: TA584 innovates initial access
Dissecting UAT-8099: New persistence mechanisms and regional focus
Malicious Chrome Extension Performs Hidden Affiliate Hijacking
Open-Source Python Script Drives Social Media Phishing Campaign
Energy Sector Incident Report – 29 December 2025
FARM: Few-shot Adaptive Malware Family Classification under Concept Drift
CAFE-GB: Scalable and Stable Feature Selection for Malware Detection via Chunk-wise Aggregated Gradient Boosting
A Fractional Framework for Modeling Malicious Code Spread in Wireless Sensor NetworksRe-Evaluating Android Malware Detection: Tabular Features, Vision Models, and Ensembles
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – malware, newsletter)
