A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.McDonald’s job app exposes data of 64 Million applicantsAthlete or Hacker? Russian basketball player accused in U.S. ransomware caseU.S. CISA adds Citrix NetScaler ADC and Gateway flaw to its Known Exploited Vulnerabilities catalogUK NCA arrested four people over M&S, Co-op cyberattacksPerfektBlue Bluetooth attack allows hacking infotainment systems of Mercedes, Volkswagen, and SkodaQantas data breach impacted 5.7 million individualsDoNot APT is expanding scope targeting European foreign ministriesNippon Steel Solutions suffered a data breach following a zero-day attackIranian group Pay2Key.I2P ramps Up ransomware attacks against Israel and US with incentives for affiliatesHackers weaponize Shellter red teaming tool to spread infostealersMicrosoft Patch Tuesday security updates for July 2025 fixed a zero-dayIntelligenceItalian police arrested a Chinese national suspected of cyberespionage on a U.S. warrantU.S. CISA adds MRLG, PHPMailer, Rails Ruby on Rails, and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalogIT Worker arrested for selling access in $100M PIX cyber heistNew Batavia spyware targets Russian industrial enterprisesTaiwan flags security risks in popular Chinese apps after official probeU.S. CISA adds Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalogHunters International ransomware gang shuts down and offers free decryption keys to all victimsInternational Press – NewsletterCybercrimeFrom electrician to pivot of a million-dollar scam in the financial system: find out who is the IT operator who sold passwords to hackers Nippon Steel Subsidiary Blames Data Breach on Zero-Day Attack Qantas confirms data breach impacts 5.7 million customersRetail cyber attacks: NCA arrest four for attacks on M&S, Co-op and HarrodsFrench police arrest Russian basketball player accused of ransomware: Report Russian basketball player arrested in France over alleged ransomware ties MalwareDatacarry RansomwareBatavia spyware steals data from Russian organizations Crypto Wallets Continue to be Drained in Elaborate Social Media Scam CoinMiner Attacks Exploiting GeoServer Vulnerability Malware Found in Official GravityForms Plugin Indicating Supply Chain Breach HackingCrowdStrike Researchers Investigate the Threat of Patchless AMSI Bypass AttacksReverse Engineering of Security Products: Developing an Advanced Microsoft Defender Tamper Tradecraft – BlackHat MEA 2024 talk CVE-2025-5777: CitrixBleed 2 Write-Up… Maybe?Taking SHELLTER: a commercial evasion framework abused in- the- wild Malicious pull request infects VS Code extension CitrixBleed 2 exploitation started mid-June — how to spot it PerfektBlue. 1-click RCE attack Activision took down Call of Duty game after PC players hacked, says source Would you like an IDOR with that? Leaking 64 million McDonald’s job applications Intelligence and Information WarfareDRAT V2: Updated DRAT Emerges in TAG-140’s ArsenalNSB Alerts the Significant Cybersecurity Risks in China-Made Mobile ApplicationsChinese ‘spy’ arrested in Italy on US warrant Sanctions Imposed on DPRK IT Workers Generating Revenue for the Kim RegimeIranian group Pay2Key.I2P ramps Up ransomware attacks against Israel and US with incentives for affiliates From Click to Compromise: Unveiling the Sophisticated Attack of DoNot APT Group on Southern European Government Entities CybersecurityWhy the Revision of the Cybersecurity Act is the Most Consequential Regulatory Development of 2025 (and Beyond) The July 2025 Security Update Review Samsung Announces Security Improvements for Galaxy SmartphonesJack Dorsey launches a WhatsApp messaging rival built on Bluetooth Russia, hotbed of cybercrime, says nyet to ethical hacking billMitigating CitrixBleed 2 (CVE‑2025‑5777) NetScaler Memory Disclosure with App & API Protector Design Patterns for Securing LLM Agents against Prompt Injections Follow me on Twitter: @securityaffairs and Facebook and MastodonPierluigi Paganini(SecurityAffairs – hacking, newsletter)