Security Affairs newsletter Round 585 by Pierluigi Paganini – INTERNATIONAL EDITION

Wait 5 sec.

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.U.S. CISA adds iCagenda and Balbooa Forms flaws to its Known Exploited Vulnerabilities catalogCritical U-Boot Bugs Undermine Secure Boot on Millions of DevicesUpdate Now: Critical Zimbra Classic Web Client Flaw Could Expose MailboxesRansomware Never Stopped: Over 9,000 Confirmed Attacks Since 2018222 GitHub Repositories Linked to Fake Go Package Malware OperationFormer Ransomware Negotiator Sentenced to 70 Months in Prison for Secretly Helping BlackCat GangGigaWiper Merges Three Malware Families Into One Destructive BackdoorINTERPOL Operation First Light Nets 5,811 Arrests and Seizes $293 MillionGodDamn Ransomware Uses PoisonX to Blind Security SoftwareAssuranceAmerica Breach Exposes 7 Million Driver’s Licenses After Employee Account HackMicrosoft fixed Defender flaw RoguePlanet (CVE-2026-50656)Fake VPN and 7-Zip Apps Turn Victims Into Residential Proxy NodesUbiquiti Patches Critical UniFi OS Flaws Allowing Command Injection and Privilege EscalationA Hacker Claims 35 GB of Accenture Source Code. The Company discloses the data breachTelegram-Hosted RedWing Malware Lets Anyone Rent Android Spyware ToolsU.S. CISA adds Adobe ColdFusion, Joomlack Page Builder, Langflow, and JoomShaper SP Page Builder flaws to its Known Exploited Vulnerabilities catalogCISA Deploys Anthropic’s Mythos AI to Hunt Vulnerabilities in U.S. Government CodeCritical Gitea Docker Bug Under Active Exploitation Exposes Repositories and SecretsSpanish Police Arrest Man Linked to CARR, Z-Pentest, and NoName057(16)Hidden Tenda Router Backdoor Grants Admin Access, No Patch AvailableAI-Generated Malware Powers New Armored Likho APT CampaignJanuscape: 16-Year-Old Linux KVM Bug Enables Cloud VM Escape AttacksAdobe ColdFusion flaw CVE-2026-48282 now exploited in the wildHidden Web Prompts Trick AI Agents Into Sending MoneySeven Bugs in FatFs Put IoT and Embedded Devices at RiskBad Epoll Flaw Gives Attackers Root Access on Linux and AndroidMedtronic Notifies 3.8 Million After ShinyHunters Data BreachInternational Press – NewsletterCybercrimeThe National Police have arrested a suspected collaborator of the pro-Russian hacktivist groups CyberArmy of Russia Reborn (CARR) and Z-Pentest  Accenture confirms breach after hacker offers stolen data for sale  Over 5,800 arrests, USD 293 million intercepted in global fraud bust  Florida Ransomware Negotiator Who Extorted and Attacked Multiple U.S. Victims Sentenced to Prison Felons, Fraudsters Flog Offensive Cybersecurity Startup MalwareNovel Java-Based QuimaRAT Targets Windows, macOS, and Linux  Vibe Coded Extortion: Avalon’s Path from Legal Lure to CrownX Ransom CapabilitiesGodDamn Ransomware: Latest Beast Rebrand Uses Malicious Driver to Disable DefensesGigaWiper: Anatomy of a destructive backdoor assembled from multiple malwareMalicious Go Module Exposes GitHub Malware Lure Network Spanning 222 Repositories  HackingBad Epoll: The bug missed by Mythos  Seven FatFs bugs, one very large blast radius  Indirect Prompt Injection in Web Content Targets AI Agents  TrojPix: Electromagnetic Covert Channels via Imperceptible Pixel Modulation  Januscape: Guest-to-Host Escape in KVM/x86  Critical Gitea Flaw Under Active Exploitation, Researchers WarnUnderstanding Langflow CVE-2026-55255, and why higher CVSS vulnerabilities aren’t always the most exploited     New Ghost Phishing Wave Is Breaking Traditional Email SecurityIntelligence and Information Warfare  Armored Likho digging a snake pit: inside the covert BusySnake Stealer campaignCavern Manticore: Exposing Iran-Linked Modular C2 FrameworkHacktivists call out Trump by hacking and defacing US Army websites What Happens if China Hacks the US Water Supply? I Went to a Secret War Game to Find Out  CIA Officers Can Sense the Threat Within Canadian spy agency says it hacked drug traffickers, extremists, and a ransomware gang last year  One Target, Two Flags | Rival Espionage Actors Converge On Pakistani Law EnforcementCybersecurityTenda firmware (multiple versions) contains hidden authentication backdoor US cyber agency is using Anthropic’s Mythos to audit government code, sources sayShowdown in Strasbourg: The unexpected return of Chat Control 1.0 Another massive data breach exposed millions of driver’s license numbers Reframing smart glasses as ‘pervert glasses’  EU takes member states to court over unimplemented cybersecurity law npm install-time security and GAT bypass2fa deprecation Unfit to Boot: Breaking U-Boot’s FIT Signature Verification  Follow me on Twitter: @securityaffairs and Facebook and MastodonPierluigi Paganini(SecurityAffairs – hacking, newsletter)