Here are the key points from the Security Affairs newsletter:
-
Major ransomware groups like BlackCat and LockBit have been targeting Linux systems.
-
A new malware called Namastex.ai is compromising NPM packages with CanisterWorm malware.
-
Shai-Hulud, a self-propagating npm worm, has compromised Bitwarden CLI packages.
-
Kyber ransomware is now attacking both Windows and ESXi systems.
-
There's been attempted exploitation of the recently disclosed CVE-2023-33538 vulnerability.
-
A sophisticated DDoS attack disrupted Bluesky (Twitter's new platform).
-
Microsoft patched a critical ASP.NET Core privilege escalation bug (CVE-2026-40372).
-
ENISA released an updated Cybersecurity Market Analysis Framework (ECSMAF v3.0).
-
A new Linux local privilege escalation vulnerability called Pack2TheRoot was discovered.
-
There are reports of a Signal hack attempt against the president of Germany's parliament.
-
The NSA is reportedly using Anthropic's Claude Mythos AI model despite security concerns.
-
Mustang Panda malware group has targeted India's banking sector
Read the full article at Security Affairs
Want to create content about this topic? Use Nemati AI tools to generate articles, social posts, and more.
![[AINews] The Unreasonable Effectiveness of Closing the Loop](/_next/image?url=https%3A%2F%2Fmedia.nemati.ai%2Fmedia%2Fblog%2Fimages%2Farticles%2F600e22851bc7453b.webp&w=3840&q=75)
