Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscapeMalware NewsletterMalware Targeting WordPress Abuses Steam Community Profiles for Command & Control Operations Legitimate-Looking Codex Remote UI Secretly Steals Your AI Tokens Operation Dragon Weave : Uncovering a China-Linked Campaign Targeting Czech Republic and Taiwan Using Azure Cloud C2Operation XENOFISCAL: SideCopy deploying persistent XenoRAT targeting the MoF, Afghanistan Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages Operation FlutterBridge: macOS Malvertising Campaign Spreads New FlutterShell BackdoorFSB’s matryoshka #1/3 – Gamaredon’s gifts that keeps unpacking – GammaPhish and GammaWorm UAC-0184: From HTA to a Signed Network StackPCPJack Hijacked 230 AWS, GCP, and Azure Servers to Run a Hidden SMTP Relay NetworkTA4922: The Suspected Chinese Crime Group is Going Globalshrun, apiwatcher, and argus: three malware analysis tools built with Claude VerdantBamboo: Just Another BRICKSTORM in the Firewall From Hand-Crafted Features to Large Language Models: A Comparative Evaluation of Android Malware Detection ParadigmsMemory-Based Detection of Obfuscated Malware Using PSO-Optimized Deep Learning to Enhance Cybersecurity PostureFollow me on Twitter: @securityaffairs and Facebook and MastodonPierluigi Paganini(SecurityAffairs – hacking, newsletter)