SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 23

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

SmokeLoader Attack Targets Companies in Taiwan

LogoFAIL Exploited to Deploy Bootkitty, the first UEFI bootkit for Linux

Horns&Hooves campaign delivers NetSupport RAT and BurnsRAT

DroidBot: Insights from a new Turkish MaaS fraud operation

RedLine, A License to Steal: The Rudometov Story & Operation Magnus

Unveiling RevC2 and Venom Loader

Ultralytics AI model hijacked to infect thousands with cryptominer

Meeten Malware: A Cross-Platform Threat to Crypto Wallets on macOS and Windows

Quack now, pay later

Survey of Transformer-Based Malicious Software Detection Systems

PBP: Post-training Backdoor Purification for Malware Classifiers

Explainable Malware Detection through Integrated Graph Reduction and Learning Techniques

MOONSHINE Exploit Kit and DarkNimbus Backdoor Enabling Earth Minotaur’s Multi-Platform Attacks

Guess Who’s Back – The Return of ANEL in the Recent Earth Kasha Spear-phishing Campaign in 2024

BlueAlpha Abuses Cloudflare Tunneling Service for GammaDrop Staging Infrastructure

Something to Remember Us By Device Confiscated by Russian Authorities Returned with Monokle-Type Spyware Installed

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini