A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.—————————————————————————————————————————————————–Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.[PlayStation Network outage has been going on for over 24 hours](https://securityaffairs.com/174005/hacking/playstation-network-global-outage.html) [Kimsuky APT group used custom RDP Wrapper version and forceCopy stealer](https://securityaffairs.com/173991/apt/north-koreas-kimsuky-forcecopy-malware.html) [Russia’s intelligence recruits Ukrainians for terror attacks via messaging apps](https://securityaffairs.com/173980/breaking-news/russias-intelligence-recruits-ukrainians-for-terror-attacks.html) [U.S. CISA adds Trimble Cityworks flaw to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/173975/hacking/u-s-cisa-adds-trimble-cityworks-flaw-to-its-known-exploited-vulnerabilities-catalog.html) [Hospital Sisters Health System impacted 882,782 individuals](https://securityaffairs.com/173965/data-breach/hospital-sisters-health-system-data-breach.html) [Attackers used a public ASP.NET machine to conduct ViewState code injection attacks](https://securityaffairs.com/173956/hacking/abusing-asp-net-machine-to-deploy-malware.html) [U.S. CISA adds Microsoft Outlook, Sophos XG Firewall, and other flaws to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/173949/hacking/u-s-cisa-adds-microsoft-outlook-sophos-xg-firewall-and-other-flaws-to-its-known-exploited-vulnerabilities-catalog.html) [Cisco addressed two critical flaws in its Identity Services Engine (ISE)](https://securityaffairs.com/173946/security/cisco-addressed-critical-flaws-in-identity-services-engine.html) [Notorious hacker behind 40+ cyberattacks on strategic organizations arrested](https://securityaffairs.com/173932/cyber-crime/spanish-police-arrested-notorious-hacker.html) [Lazarus APT targets crypto wallets using cross-platform JavaScript stealer](https://securityaffairs.com/173902/apt/lazarus-cross-platform-javascript-stealer-crypto-wallets.html) [U.S. CISA adds Linux kernel flaw to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/173897/hacking/u-s-cisa-adds-linux-kernel-flaw-to-its-known-exploited-vulnerabilities-catalog.html) [U.S. CISA adds Microsoft .NET Framework, Apache OFBiz, and Paessler PRTG Network Monitor flaws to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/173889/security/u-s-cisa-adds-microsoft-net-framework-apache-ofbiz-paessler-prtg-network-monitor-flaws-known-exploited-vulnerabilities-catalog.html) [SparkCat campaign target crypto wallets using OCR to steal recovery phrases](https://securityaffairs.com/173873/malware/sparkcat-campaign-target-crypto-wallets.html) [International Civil Aviation Organization (ICAO) and ACAO Breached: Cyberespionage Groups Targeting Aviation Safety Specialists](https://securityaffairs.com/173863/data-breach/icao-and-acao-breached-cyberespionage-groups-targeting-aviation-safety-specialists.html) [Online food ordering and delivery platform GrubHub discloses a data breach](https://securityaffairs.com/173848/data-breach/grubhub-suffered-a-data-breach.html) [Netgear urges users to upgrade two flaws impacting WiFi router models](https://securityaffairs.com/173839/security/netgear-wifi-routers-flaws.html) [AMD fixed a flaw that allowed to load malicious microcode](https://securityaffairs.com/173831/security/amd-flaw-allowed-load-malicious-microcode.html) [Coyote Banking Trojan targets Brazilian users, stealing data from 70+ financial apps and websites](https://securityaffairs.com/173818/malware/coyote-banking-trojan-targets-brazilian-users.html) [Google fixed actively exploited kernel zero-day flaw](https://securityaffairs.com/173812/hacking/google-android-kernel-zero-day-flaw.html) [Web Skimmer found on at least 17 websites, including Casio UK](https://securityaffairs.com/173797/malware/web-skimmer-casio-uks-site.html) [Crazy Evil gang runs over 10 highly specialized social media scams](https://securityaffairs.com/173784/cyber-crime/crazy-evil-runs-10-social-media-scams.html) [Elon Musk ‘s DOGE team granted ‘full access’ to sensitive Treasury systems. What are the risks?](https://securityaffairs.com/173776/security/elon-musk-s-doge-granted-full-access-to-sensitive-treasury-systems.html) [Texas is the first state to ban DeepSeek on government devices](https://securityaffairs.com/173764/laws-and-regulations/texas-bans-deepseek-and-rednote-govt-devices.html) [Law enforcement seized the domains of HeartSender cybercrime marketplaces](https://securityaffairs.com/173750/cyber-crime/heartsender-cybercrime-marketplaces-seized.html) [WhatsApp disrupted a hacking campaign targeting journalists with Paragon spyware](https://securityaffairs.com/173721/security/whatsapp-disrupted-paragon-spyware-campaign.html) [Ransomware attack hit Indian multinational Tata Technologies](https://securityaffairs.com/173712/cyber-crime/tata-technologies-ransomware-attack.html)**International Press — Newsletter****Cybercrime**[FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang](https://krebsonsecurity.com/2025/01/fbi-dutch-police-disrupt-manipulaters-phishing-gang/)[‘Crazy Evil’ Cryptoscam Gang: Unmasking a Global Threat in 2024](https://www.recordedfuture.com/research/crazy-evil-cryptoscam-gang)[Who’s Behind the Seized Forums ‘Cracked’ -& ‘Nulled’?](https://krebsonsecurity.com/2025/02/whos-behind-the-seized-forums-cracked-nulled/)[US Justice Department says cybercrime forum allegedly affected 17 million Americans](https://techcrunch.com/2025/01/30/us-justice-department-says-cybercrime-forum-allegedly-affected-17-million-americans/)[Cybercrime is increasingly complex. Here’s how data awareness can help](https://www.weforum.org/stories/2025/01/cybercrime-data-cybersecurity/)[HTTP Client Tools Exploitation for Account Takeover Attacks](https://www.proofpoint.com/us/blog/threat-insight/http-client-tools-exploitation-account-takeover-attacks)[Dangerous hacker responsible for more than 40 cyberattacks on strategic organizations arrested](https://www.policia.es/_es/comunicacion_prensa_detalle.php?ID=16448)[Who’s Behind the Seized Forums ‘Cracked’ -& ‘Nulled’?](https://krebsonsecurity.com/2025/02/whos-behind-the-seized-forums-cracked-nulled/)**Malware**[Malicious packages deepseeek and deepseekai published in Python Package Index](https://global.ptsecurity.com/analytics/pt-esc-threat-intelligence/malicious-packages-deepseeek-and-deepseekai-published-in-python-package-index)[Coyote Banking Trojan: A Stealthy Attack via LNK Files](https://www.fortinet.com/blog/threat-research/coyote-banking-trojan-a-stealthy-attack-via-lnk-files)[Go Supply Chain Attack: Malicious Package Exploits Go Module Proxy Caching for Persistence](https://socket.dev/blog/malicious-package-exploits-go-module-proxy-caching-for-persistence)[Rat Race: ValleyRAT Malware Targets Organizations with New Delivery Techniques](https://www.morphisec.com/blog/rat-race-valleyrat-malware-china/)[Semantic Entanglement-Based Ransomware Detection via Probabilistic Latent Encryption Mapping](https://arxiv.org/abs/2502.02730)**Hacking**[DeepSeek Failed Over Half of the Jailbreak Tests by Qualys TotalAI](https://blog.qualys.com/vulnerabilities-threat-research/2025/01/31/deepseek-failed-over-half-of-the-jailbreak-tests-by-qualys-totalai)[Google fixes Android kernel zero-day exploited in attacks](https://www.bleepingcomputer.com/news/security/google-fixes-android-kernel-zero-day-exploited-in-attacks/)[2024 Trends in Vulnerability Exploitation](https://vulncheck.com/blog/2024-exploitation-trends)[Hacker Conversations: David Kennedy — an Atypical Typical Hacker](https://www.securityweek.com/hacker-conversations-david-kennedy-an-atypical-typical-hacker/)[Code injection attacks using publicly disclosed ASP.NET machine keys](https://www.microsoft.com/en-us/security/blog/2025/02/06/code-injection-attacks-using-publicly-disclosed-asp-net-machine-keys/)**Intelligence and Information Warfare**[macOS FlexibleFerret -| Further Variants of DPRK Malware Family Unearthed](https://www.sentinelone.com/blog/macos-flexibleferret-further-variants-of-dprk-malware-family-unearthed/)[Silent Lynx APT Targets Various Entities Across Kyrgyzstan -& Neighbouring Nations](https://www.seqrite.com/blog/silent-lynx-apt-targeting-central-asian-entities/)[Lazarus Group Targets Organizations with Sophisticated LinkedIn Recruiting Scam](https://www.bitdefender.com/en-us/blog/labs/lazarus-group-targets-organizations-with-sophisticated-linkedin-recruiting-scam)[Spyware maker Paragon confirms US government is a customer](https://techcrunch.com/2025/02/04/spyware-maker-paragon-confirms-u-s-government-is-a-customer/)[Google deletes policy against using AI for weapons or surveillance](https://mashable.com/article/google-ai-weapons-surveillance-policy)[Russia uses messaging apps to recruit terrorists, Ukraine’s police says](https://therecord.media/russia-uses-messaging-apps-to-recruit-terrorists)[Persistent Threats from the Kimsuky Group Using RDP Wrapper](https://asec.ahnlab.com/en/86098/)**Cybersecurity**[Texas governor orders ban on DeepSeek, RedNote for government devices](https://apnews.com/article/texas-deepseek-apps-ban-3828a4743e9919398dfac0ba9d4a5c25)[Article 5: Prohibited AI Practices](https://artificialintelligenceact.eu/article/5/)[Elon Musk’s Doge team granted ‘full access’ to federal payment system](https://www.theguardian.com/technology/2025/feb/02/elon-musk-doge-access-federal-payment-system)[Cyber Security 2025: Practical Trends Beyond the Hype](https://www.nextron-systems.com/2025/02/03/cyber-security-2025-real-threats-beyond-the-headlines/)[Cyber agencies unveil new guidelines to secure edge devices from increasing threat](https://www.ncsc.gov.uk/news/cyber-agencies-unveil-new-guidelines-to-secure-edge-devices-from-increasing-threat)[Journalist targeted on WhatsApp by Paragon spyware: ‘I feel violated’](https://techcrunch.com/2025/02/03/journalist-targeted-on-whatsapp-by-paragon-spyware-i-feel-violated/) [](https://www.securityweek.com/how-agentic-ai-will-be-weaponized-for-social-engineering-attacks/)[How Agentic AI will be Weaponized for Social Engineering Attacks](https://www.securityweek.com/how-agentic-ai-will-be-weaponized-for-social-engineering-attacks/)[Israeli Spyware Firm Paragon Cuts Italy’s Access After Journalists Targeted](https://www.haaretz.com/israel-news/security-aviation/2025-02-06/ty-article/.premium/israeli-spyware-firm-paragon-kills-italys-access-after-journalists-targeted/00000194-da39-d390-a1b6-ffbb3bdf0000)[Student group sues Education Department over reported DOGE access to financial aid databases](https://therecord.media/university-of-california-students-sue-education-department-doge)[PSN down: PlayStation Network not working for almost a day as players left in dark](https://www.independent.co.uk/tech/psn-down-playstation-network-ps5-not-working-offline-latest-status-b2694716.html)[Apple’s ‘Dangerous’ iPhone Update Is Much Worse Than You Think](https://www.forbes.com/sites/zakdoffman/2025/02/08/apples-dangerous-iphone-update-is-much-worse-than-you-think/)Follow me on Twitter: [**@securityaffairs**](https://twitter.com/securityaffairs) and [**Facebook**](https://www.facebook.com/sec.affairs) and [Mastodon](https://infosec.exchange/@securityaffairs)[**Pierluigi Paganini**](http://www.linkedin.com/pub/pierluigi-paganini/b/742/559)**(** [**SecurityAffairs**](http://securityaffairs.co/wordpress/)**–** **hacking, newsletter)**
Related Tags:
TA427
Emerald Sleet
NAICS: 48 – Transportation
NAICS: 921 – Executive
Legislative
Other General Government Support
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 481 – Air Transportation
NAICS: 335 – Electrical Equipment
Appliance
Component Manufacturing
NAICS: 923 – Administration Of Human Resource Programs
NAICS: 81 – Other Services (except Public Administration)
Associated Indicators: