Security Affairs newsletter Round 538 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
International Press – Newsletter
Justice Department Announces Seizure of Over $2.8 Million in Cryptocurrency, Cash, and other Assets
Colt Telecom attack claimed by WarLock ransomware, data up for sale
Serial hacker who defaced official websites is sentenced
Oregon man charged with administering “Rapper Bot” DDoS-for-hire Botnet
Fraud-as-a-Service: The Rising Threat to Africa’s Digital Future
SIM-Swapper, Scattered Spider Hacker Gets 10 Years
Colt confirms customer data stolen as Warlock ransomware auctions files
African authorities dismantle massive cybercrime and fraud networks, recover millions
Europol confirms $50,000 Qilin ransomware reward is fake
Malware
Hunt.io Exposes and Analyzes ERMAC V3.0 Banking Trojan Full Source Code Leak
Evolution of the PipeMagic backdoor: from the RansomExx incident to CVE-2025-29824
GodRAT – New RAT targeting financial institutions
Preventing Domain Resurrection Attacks
Hacking
From Support Ticket to Zero Day
New Exploit for Critical SAP Vulnerability CVE-2025-31324 Released in the Wild
Hijacked Satellites and Orbiting Space Weapons: In the 21st Century, Space Is the New Battlefield
Google says its AI-based bug hunter found 20 security vulnerabilities
“Scamlexity” We Put Agentic AI Browsers to the Test – They Clicked, They Paid, They Failed
Brazil: 121,981 files were exposed without security on a server containing health documents
DOM-based Extension Clickjacking: Your Password Manager Data at Risk
Scattered Spider: A Threat Profile
Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks
Intelligence and Information Warfare
Russian Government Cyber Actors Targeting Networking Devices, Critical Infrastructure
Microsoft reportedly cuts China’s early access to bug disclosures, PoC exploit code
MURKY PANDA: A Trusted-Relationship Threat in the Cloud
APT36: Targets Indian BOSS Linux Systems with Weaponized AutoStart Files
Cybersecurity
HR giant Workday discloses data breach amid Salesforce attacks
Allianz Life data breach affects 1.1 million customers
U.K. Government Drops Apple Encryption Backdoor Order After U.S. Civil Liberties Pushback
Flaws in Software Used by Hundreds of Cities and Towns Exposed Sensitive Data
Orange Belgium informs its customers about a cyberattack
Hackers who exposed North Korean government hacker explain why they did it
Follow me on Twitter:@securityaffairsandFacebookandMastodon
(SecurityAffairs–hacking,newsletter)