Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscapeInfiniti Stealer: a new macOS infostealer using ClickFix and Python/Nuitka Converging Interests: Analysis of Threat Clusters Targeting a Southeast Asian GovernmentRoadK1ll: A WebSocket Based Pivoting Implant axios Compromised: npm Supply Chain Attack via Dependency Injection Axios compromised: hijacked maintainer account pushes malicious npm versions North Korea-Nexus Threat Actor Compromises Widely Used Axios NPM Package in Supply Chain AttackBlueNoroff | How DPRK’s macOS RustBucket Seeks to Evade Analysis and Detection DeepLoad Malware Pairs ClickFix Delivery with AI-Generated Evasion UAC-0255 cyberattack disguised as a notification from CERT-UA using the AGEWHEEZE software tool (CERT-UA#21075)A laughing RAT: CrystalX combines spyware, stealer, and prankware features Operation TrueChaos: 0-Day Exploitation Against Southeast Asian Government TargetsOperation NoVoice: Rootkit Tells No Tales Understanding NPM Malicious Package Detection: A Benchmark-Driven Empirical AnalysisLabel-efficient Training Updates for Malware Detection over TimeSafeguarding LLMs Against Misuse and AI-Driven Malware Using Steganographic CanariesMachine Learning-Based Static Ransomware Detection Using PE Header Features and SHAP InterpretationFollow me on Twitter: @securityaffairs and Facebook and MastodonPierluigi Paganini(SecurityAffairs – hacking, newsletter)