Security Affairs newsletter Round 580 by Pierluigi Paganini – INTERNATIONAL EDITION

AndyC 8 June 2026

Security Affairs newsletter Round 580 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 580 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 580 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 580 by Pierluigi Paganini – INTERNATIONAL EDITION

Pierluigi Paganini
June 07, 2026

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

International Press – Newsletter

Cybercrime

Silent Ransom Group (SRG): Uncovering DNS Fast Flux Infrastructure

Legitimate-Looking Codex Remote UI Secretly Steals Your AI Tokens

Malicious Registrations in the Domain Name Market: An Analysis of 2025 gTLD Registrations and Cybercriminal Demand   

29 arrested as law enforcement strikes criminal networks behind illegal streaming 

Operation FlutterBridge: macOS Malvertising Campaign Spreads New FlutterShell Backdoor  

Scam Center Strike Force Announces Results of U.S. & Private Industry “Disruption Week”  

Leading Tech Companies and Law Enforcement Join Forces to Disrupt Criminal Scam Networks in Southeast Asia  

PCPJack Hijacked 230 AWS, GCP, and Azure Servers to Run a Hidden SMTP Relay Network  

Cybercriminals Are Targeting the FIFA World Cup 2026      

Malware

Malware Targeting WordPress Abuses Steam Community Profiles for Command & Control Operations  

Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages  

shrun, apiwatcher, and argus: three malware analysis tools built with Claude  

Operation XENOFISCAL: SideCopy deploying persistent XenoRAT targeting the MoF, Afghanistan 

Hacking

Rapid7 Observed Exploitation of PAN-OS GlobalProtect Authentication Bypass Vulnerability (CVE-2026-0257)

AI agent at the wheel: How an attacker used LLMs to move from a CVE to an internal database in 4 pivots    

CIFSwitch: a non-universal Linux local root vulnerability

15,000 WordPress Sites Affected by Administrator Account Creation Vulnerability in WP Maps Pro WordPress Plugin      

Microsoft’s stance on zero day exploits is a dumpster fire of their own making     

CVE-2026-0826: Critical unauthenticated stack buffer overflow in HP Poly VVX and Trio VoIP Phones (FIXED)  

Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited

1-Click GitHub Token Stealing via a VSCode Bug

PCPJack Hijacked 230 AWS, GCP, and Azure Servers to Run a Hidden SMTP Relay Network  

Critical vulnerability in Mirasvit Cache Warmer for Magento  

Gemini’s Secret Affair: Exploiting Gemini Voice Assistant Through Instant Messaging Apps  

ZEC Crashes 38% as Zcash Discloses ‘Critical Counterfeiting Vulnerability’  

Intelligence and Information Warfare

Exclusive: US military personnel are being targeted using location data, Pentagon letter shows  

Operation Dragon Weave : Uncovering a China-Linked Campaign Targeting Czech Republic and Taiwan Using Azure Cloud C2  

The Russian Federal Security Service (FSB) has uncovered and documented a large-scale operation by foreign intelligence agencies to introduce and deploy malicious software on the mobile communications devices of high-ranking Russian officials  

Espionage Campaign Targeted Stock Exchange Executive for Five Months   

Russian spies are aggressively seeking Western technology as sanctions bite, officials say

FSB’s matryoshka #1/3 – Gamaredon’s gifts that keeps unpacking – GammaPhish and GammaWorm

UAC-0184: From HTA to a Signed Network Stack

TA4922: The Suspected Chinese Crime Group is Going Global  

The FBI Remotely Reset Thousands of Routers Hijacked by the GRU  

VerdantBamboo: Just Another BRICKSTORM in the Firewall

Cybersecurity

Ransomware runs office hours: what 16,699 leak posts reveal 

PROMOTING ADVANCED ARTIFICIAL INTELLIGENCE INNOVATION AND SECURITY  

Instagram is alerting users who were targeted by hackers during AI chatbot attacks  

AI in the Breach: How an Adversary Leveraged AI to Target a Water Utility’s OT

Microsoft accused of leaking Dutch civil servants’ names to U.S. government       

Bot web traffic has overtaken human web traffic, data shows 

NSA said to be readying Anthropic’s Mythos for use in cyber operations  

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

Tags: , , , , , , , , , , , , , , , , , ,

What do you feel about this?

More Stories

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 100

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 100

AndyC 8 June 2026
U.S. CISA adds SolarWinds Serv-U flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds SolarWinds Serv-U flaw to its Known Exploited Vulnerabilities catalog

AndyC 8 June 2026
Report: Anthropic Deploys Engineers to Support NSA Use of Mythos

Report: Anthropic Deploys Engineers to Support NSA Use of Mythos

AndyC 8 June 2026
Claude Opus Found a Four-Year-Old Hole in Zcash’s Privacy Layer. Nobody Knows If Someone Already Used It.

Claude Opus Found a Four-Year-Old Hole in Zcash’s Privacy Layer. Nobody Knows If Someone Already Used It.

AndyC 8 June 2026
The Mythos Race: Trump’s New EO and Glasswing’s Expansion

The Mythos Race: Trump’s New EO and Glasswing’s Expansion

AndyC 8 June 2026
Got a LinkedIn message from a recruiter? It might be Chinese intelligence, warn FBI and MI5

Got a LinkedIn message from a recruiter? It might be Chinese intelligence, warn FBI and MI5

AndyC 8 June 2026

You may have missed

Lessons for life: Why children’s data is a long-term identity risk

Lessons for life: Why children’s data is a long-term identity risk

AndyC 8 June 2026
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 100

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 100

AndyC 8 June 2026
Security Affairs newsletter Round 580 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 580 by Pierluigi Paganini – INTERNATIONAL EDITION

AndyC 8 June 2026
U.S. CISA adds SolarWinds Serv-U flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds SolarWinds Serv-U flaw to its Known Exploited Vulnerabilities catalog

AndyC 8 June 2026
Report: Anthropic Deploys Engineers to Support NSA Use of Mythos

Report: Anthropic Deploys Engineers to Support NSA Use of Mythos

AndyC 8 June 2026

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.