Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscapeMalware NewsletterBrewing Trouble — Dissecting a macOS Malware Campaign Large-Scale Attack Targeting Macs via GitHub Pages Impersonating Companies to Attempt to Deliver Stealer MalwarePrompts as Code & Embedded Keys | The Hunt for LLM-Enabled MalwareThe Chameleon’s Trap: Inside the Top 3 Exploit Thriving on 60% of Unpatched MS Office Systems YiBackdoor: A New Malware Family With Links to IcedID and Latrodectus Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys How RainyDay, Turian and a new PlugX variant abuse DLL search order hijackingMapping the Infrastructure and Malware Ecosystem of MuddyWaterOperation Rewrite: Chinese-Speaking Threat Actors Deploy BadIIS in a Wide Scale SEO Poisoning Campaign ShadowV2: An emerging DDoS for hire botnet Another BRICKSTORM: Stealthy Backdoor Enabling Espionage into Tech and Legal Sectors RedNovember Targets Government, Defense, and Technology OrganizationsMalware Analysis Report RayInitiator & LINE VIPER XCSSET evolves again: Analyzing the latest updates to XCSSET’s inventory Bearlyfy: The Evolution of a New Ransomware Group and Its Connection to PhantomCoreUpdated BO Team Grouping ToolsDeniability by Design: DNS-Driven Insights into a Malicious Ad Network Defending against Stegomalware in Deep Neural Networks with Permutation SymmetryCyberSOCEval: Benchmarking LLMs Capabilities for Malware Analysis and Threat Intelligence ReasoningDCmal-2025: A Novel Routing-Based DisConnectivity Malware—Development, Impact, and CountermeasuresFollow me on Twitter: @securityaffairs and Facebook and MastodonPierluigi Paganini(SecurityAffairs – hacking, newsletter)