A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.U.S. CISA adds SolarWinds Serv-U flaw to its Known Exploited Vulnerabilities catalogReport: Anthropic Deploys Engineers to Support NSA Use of MythosClaude Opus Found a Four-Year-Old Hole in Zcash’s Privacy Layer. Nobody Knows If Someone Already Used It.Silent Ransom Group (SRG): Switching To DNS Fast Flux InfrastructureCisco SD-WAN Has a New Root-Level Problem, and There’s No Fix YetPCPJack Exposed: Researchers Uncover 230-Node Cloud Email Relay NetworkFake Context Alignment: The Attack That Made Gemini Obey Strangers Through Your NotificationsU.S. CISA adds Mirasvit Full Page Cache Warmer flaw to its Known Exploited Vulnerabilities catalogCritical Cisco Unified CM Bug Patched as Public Exploit Code EmergesGamaredon Uses WinRAR Vulnerability to Launch Modular Spy Campaign on Ukrainian TargetsResearcher Drops a New VS Code Zero-Day After Losing Trust in Microsoft’s Disclosure Process29 Arrests, Nine Crime Groups Dismantled: Another Blow to Illegal StreamingCyber espionage campaign targeted stock exchange executive’s Outlook accountRussia’s FSB Says Foreign Spies Infected Officials’ Phones With MalwareU.S. CISA adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalogGoogle Patches Actively Exploited Android Flaw Affecting Millions of DevicesWhy an HP Poly VoIP Phones Bug Could Become an Enterprise FootholdInstagram Account Hijacks Expose the Security Risks of AI-Powered SupportU.S. CISA adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalogENISA NIS360 2026: Progress Across the Board, But the Sectors That Matter Most Are Still Falling ShortGoDaddy found malware on 1,980 WordPress sites using Steam as C2 infrastructureRansomware Operators Keep Business Hours. The Data Proves ItCVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a PasswordCIFSwitch, a Linux Root Bug Hidden in Plain Sight for 19 YearsU.S. CISA adds Palo Alto Networks PAN-OS flaw to its Known Exploited Vulnerabilities catalogThe Pentagon Finally Admits That Location Data Is a Battlefield ProblemCVE-2026-0257: Rapid7 Caught Attackers Abusing Forged VPN Cookies Against Multiple CustomersInternational Press – NewsletterCybercrimeSilent Ransom Group (SRG): Uncovering DNS Fast Flux InfrastructureLegitimate-Looking Codex Remote UI Secretly Steals Your AI TokensMalicious Registrations in the Domain Name Market: An Analysis of 2025 gTLD Registrations and Cybercriminal Demand 29 arrested as law enforcement strikes criminal networks behind illegal streaming Operation FlutterBridge: macOS Malvertising Campaign Spreads New FlutterShell Backdoor Scam Center Strike Force Announces Results of U.S. & Private Industry “Disruption Week” Leading Tech Companies and Law Enforcement Join Forces to Disrupt Criminal Scam Networks in Southeast Asia PCPJack Hijacked 230 AWS, GCP, and Azure Servers to Run a Hidden SMTP Relay Network Cybercriminals Are Targeting the FIFA World Cup 2026 MalwareMalware Targeting WordPress Abuses Steam Community Profiles for Command & Control Operations Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages shrun, apiwatcher, and argus: three malware analysis tools built with Claude Operation XENOFISCAL: SideCopy deploying persistent XenoRAT targeting the MoF, Afghanistan HackingRapid7 Observed Exploitation of PAN-OS GlobalProtect Authentication Bypass Vulnerability (CVE-2026-0257)AI agent at the wheel: How an attacker used LLMs to move from a CVE to an internal database in 4 pivots CIFSwitch: a non-universal Linux local root vulnerability15,000 WordPress Sites Affected by Administrator Account Creation Vulnerability in WP Maps Pro WordPress Plugin Microsoft’s stance on zero day exploits is a dumpster fire of their own making CVE-2026-0826: Critical unauthenticated stack buffer overflow in HP Poly VVX and Trio VoIP Phones (FIXED) Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited1-Click GitHub Token Stealing via a VSCode BugPCPJack Hijacked 230 AWS, GCP, and Azure Servers to Run a Hidden SMTP Relay Network Critical vulnerability in Mirasvit Cache Warmer for Magento Gemini’s Secret Affair: Exploiting Gemini Voice Assistant Through Instant Messaging Apps ZEC Crashes 38% as Zcash Discloses ‘Critical Counterfeiting Vulnerability’ Intelligence and Information WarfareExclusive: US military personnel are being targeted using location data, Pentagon letter shows Operation Dragon Weave : Uncovering a China-Linked Campaign Targeting Czech Republic and Taiwan Using Azure Cloud C2 The Russian Federal Security Service (FSB) has uncovered and documented a large-scale operation by foreign intelligence agencies to introduce and deploy malicious software on the mobile communications devices of high-ranking Russian officials Espionage Campaign Targeted Stock Exchange Executive for Five Months Russian spies are aggressively seeking Western technology as sanctions bite, officials sayFSB’s matryoshka #1/3 – Gamaredon’s gifts that keeps unpacking – GammaPhish and GammaWormUAC-0184: From HTA to a Signed Network StackTA4922: The Suspected Chinese Crime Group is Going Global The FBI Remotely Reset Thousands of Routers Hijacked by the GRU VerdantBamboo: Just Another BRICKSTORM in the FirewallCybersecurityRansomware runs office hours: what 16,699 leak posts reveal PROMOTING ADVANCED ARTIFICIAL INTELLIGENCE INNOVATION AND SECURITY Instagram is alerting users who were targeted by hackers during AI chatbot attacks AI in the Breach: How an Adversary Leveraged AI to Target a Water Utility’s OTMicrosoft accused of leaking Dutch civil servants’ names to U.S. government Bot web traffic has overtaken human web traffic, data shows NSA said to be readying Anthropic’s Mythos for use in cyber operations Follow me on Twitter: @securityaffairs and Facebook and MastodonPierluigi Paganini(SecurityAffairs – hacking, newsletter)