A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.French authorities investigate AI ‘undressing’ deepfakes on XThousands of ColdFusion exploit attempts spotted during Christmas holidayTwo U.S. cybersecurity professionals plead guilty in BlackCat/Alphv ransomware caseCovenant Health data breach after ransomware attack impacted over 478,000 peoplePhishing campaign abuses Google Cloud Application to impersonate legitimate Google emailsIBM warns of critical API Connect bug enabling remote accessTrust Wallet confirms second Shai-Hulud supply-chain attack, $8.5M in crypto stolenReact2Shell under attack: RondoDox Botnet spreads miners and malwareESA disclosed a data breach, hackers breached external serversSingapore CSA warns of maximun severity SmarterMail RCE flawMongoBleed (CVE-2025-14847): the US, China, and the EU are among the top exploited GEOsCoupang announces $1.17B compensation plan for 33.7M data breach victimsMustang Panda deploys ToneShell via signed kernel-mode rootkit driverLithuanian suspect arrested over KMSAuto malware that infected 2.8M systemsU.S. CISA adds a flaw in MongoDB Server to its Known Exploited Vulnerabilities catalogRomania’s Oltenia Energy Complex suffers major ransomware attackKorean Air discloses data breach after the hack of its catering and duty-free supplierMongoBleed flaw actively exploited in attacks in the wildEvasive Panda cyberespionage campaign uses DNS poisoning to install MgBot backdoorCondé Nast faces major data breach: 2.3M WIRED records leaked, 40M more at riskStolen LastPass backups enable crypto theft through 2025International Press – NewsletterCybercrimeHacker Leaks 2.3M Wired.com Records, Claims 40M-User Condé Nast Breach Foreign hackers who distributed virtual asset embezzlement malwareNew recruits secured through Interpol warrants,extradited to Korea and arrested Two Americans Plead Guilty to Targeting Multiple U.S. Victims Using ALPHV BlackCat Ransomware Bitfinex crypto thief who was serving five years thanks Trump for early releaseMalwareSpearphishing Campaign Abuses npm Registry to Target U.S. and Allied Manufacturing and Healthcare Organizations EmEditor Supply Chain Incident Details Disclosed: Distribution of Information-Stealing Malware Sweeps Through Domestic Government and Enterprise Entities GlassWorm Goes Mac: Fresh Infrastructure, New Tricks RondoDoX Botnet Weaponizes React2Shell HackingMongoBleed (CVE-2025-14847): MongoDB Memory Leak Flaw MongoBleed (CVE-2025-14847) exploited in the wild: everything you need to know Trust Wallet Browser Extension v2.68 Incident: An Update to Our Community Phishing Campaign Leverages Trusted Google Cloud Automation Capabilities to Evade Detection New ErrTraffic service enables ClickFix attacks via fake browser glitchesColdFusion++ Christmas Campaign: Catching a Coordinated Callback Calamity The Anatomy of a React2Shell Compromise Intelligence and Information WarfareEvasive Panda APT poisons DNS requests to deliver MgBotThe HoneyMyte APT evolves with a kernel-mode rootkit and a ToneShell backdoor Silver Fox Targeting India Using Tax Themed Phishing Lures DarkSpectre: Unmasking the Threat Actor Behind 8.8 Million Infected Browsers You’ve been targeted by government spyware. Now what?Drones to Diplomas: How Russia’s Largest Private University is Linked to a $25M Essay Mill APT36 : Multi-Stage LNK Malware Campaign Targeting Indian Government Entities CybersecurityDecember 27 Advisory: MongoBleed – Critical MongoDB Uninitialized Memory Disclosure Vulnerability [CVE-2025-14847]Data breach at Korean Air leaks 30,000 employee records Coupang to Issue $1.17 Billion in Vouchers Over Data Breach European Space Agency confirms breach following leak of internal data Non Proliferation and Iran-related Designations; Cyber-related and Russia-related Designations Removals France to investigate deepfakes of women stripped naked by Grok REGARDING THE ACQUISITION OF CERTAIN ASSETS OF EMCORE CORPORATION BY HIEFO CORPORATION Follow me on Twitter: @securityaffairs and Facebook and MastodonPierluigi Paganini(SecurityAffairs – hacking, newsletter)