A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.—————————————————————————————————————————————————–Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.[Akira ransomware gang used an unsecured webcam to bypass EDR](https://securityaffairs.com/175103/cyber-crime/akira-ransomware-gang-used-unsecured-webcam-bypass-edr.html) [Japanese telecom giant NTT suffered a data breach that impacted 18,000 companies](https://securityaffairs.com/175090/data-breach/japanese-telecom-giant-ntt-data-breach.html) [Mirai-based botnets exploit CVE-2025-1316 zero-day in Edimax IP cameras](https://securityaffairs.com/175060/hacking/mirai-based-botnets-exploit-cve-2025-1316-zero-day-in-edimax-ip-cameras.html) [The Role of Differential Privacy in Protecting Sensitive Information in the Era of Artificial Intelligence](https://securityaffairs.com/175061/security/differential-privacy-in-protecting-sensitive-information-in-the-era-of-artificial-intelligence.html) [International law enforcement operation seized the domain of the Russian crypto exchange Garantex](https://securityaffairs.com/175049/cyber-crime/international-law-enforcement-operation-seized-the-domain-of-the-russian-crypto-exchange-garantex.html) [Medusa Ransomware targeted over 40 organizations in 2025](https://securityaffairs.com/175013/malware/medusa-ransomware-targeted-over-40-organizations-in-2025.html) [Qilin Ransomware gang claims the hack of the Ministry of Foreign Affairs of Ukraine](https://securityaffairs.com/175025/cyber-crime/qilin-ransomware-ministry-of-foreign-affairs-of-ukraine.html) [Elastic patches critical Kibana flaw allowing code execution](https://securityaffairs.com/174999/security/elastic-kibana-critical-flaw.html) [The U.S. DoJ charges 12 Chinese nationals for state-linked cyber operations](https://securityaffairs.com/174986/cyber-warfare-2/u-s-department-of-justice-doj-charges-12-chinese-nationals.html) [Chinese Lotus Blossom APT targets multiple sectors with Sagerunex backdoor](https://securityaffairs.com/174976/apt/lotus-blossom-apt-sagerunex-backdoor.html) [China-linked APT Silk Typhoon targets IT Supply Chain](https://securityaffairs.com/174962/apt/china-linked-apt-silk-typhoon-targets-it-supply-chain.html) [Hunters International gang claims the theft of 1.4 TB of data allegedly stolen from Tata Technologies](https://securityaffairs.com/174953/data-breach/ransomware-group-hunters-international-claims-to-have-hacked-tata-technologies.html) [New Eleven11bot botnet infected +86K IoT devices](https://securityaffairs.com/174941/malware/new-eleven11bot-botnet-infected-86k-iot-devices.html) [Polish Space Agency POLSA disconnected its network following a cyberattack](https://securityaffairs.com/174930/security/polish-space-agency-polsa-disconnected-its-network-following-a-cyberattack.html) [U.S. CISA adds Linux kernel and VMware ESXi and Workstation flaws to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/174923/security/u-s-cisa-adds-linux-kernel-and-vmware-esxi-and-workstation-flaws-to-its-known-exploited-vulnerabilities-catalog.html) [VMware fixed three actively exploited zero-days in ESX products](https://securityaffairs.com/174911/security/vmware-fixed-three-actively-exploited-zero-days-in-esx-products.html) [Digital nomads and risk associated with the threat of infiltred employees](https://securityaffairs.com/174898/security/digital-nomads-and-risk-associated-with-the-threat-of-infiltred-employees.html) [Google fixed two actively exploited Android flaws](https://securityaffairs.com/174887/hacking/google-fixed-android-actively-exploited-flaws.html) [Mass exploitation campaign hit 4,000+ ISP networks to deploy info stealers and crypto miners](https://securityaffairs.com/174873/cyber-crime/massive-attack-deploy-info-stealers-crypto-miners.html) [CISA maintains stance on Russian cyber threats despite policy shift](https://securityaffairs.com/174862/intelligence/cisa-maintains-stance-on-russian-cyber-threats-despite-policy-shift.html) [U.S. CISA adds Multiple Cisco Small Business RV Series Routers, Hitachi Vantara Pentaho BA Server, Microsoft Windows Win32k, and Progress WhatsUp Gold flaws to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/174853/security/u-s-cisa-adds-multiple-cisco-small-business-rv-series-routers-hitachi-vantara-pentaho-ba-server-microsoft-windows-win32k-and-progress-whatsup-gold-flaws-to-its-known-exploited-vulnerabilities.html) [U.S. Authorities recovered $31 Million Related to 2021 Uranium Finance cyber heist](https://securityaffairs.com/174845/cyber-crime/u-s-authorities-recovered-31-million-uranium-finance.html) [Serbian student activist’s phone hacked using Cellebrite zero-day exploit](https://securityaffairs.com/174822/breaking-news/serbian-student-activists-phone-hacked-using-cellebrite-zero-day-exploit.html) [Qilin ransomware gang claimed responsibility for the Lee Enterprises attack](https://securityaffairs.com/174831/data-breach/qilin-ransomware-group-claims-responsibility-lee-enterprises-attack.html) [Meta fired 20 employees for leaking information, more firings expected](https://securityaffairs.com/174798/social-networks/meta-fired-20-employees-for-leaking-information.html)**International Press — Newsletter****Cybercrime**[U.S. Authorities Seize $31 Million Related to Uranium Finance Hack](https://www.trmlabs.com/post/u-s-authorities-seize-31-million-in-uranium-finance-exploits-investigation)[10 Ways Cybercrime Impacts Business](https://www.investopedia.com/financial-edge/0112/3-ways-cyber-crime-impacts-business.aspx)[Infostealer Campaign against ISPs](https://www.splunk.com/en_us/blog/security/infostealer-campaign-against-isps.html)[Nigerian Man Extradited to the United States to Face Computer Intrusion and Theft Charges](https://www.justice.gov/usao-ma/pr/nigerian-man-extradited-united-states-face-computer-intrusion-and-theft-charges)[Russian crypto exchange Garantex seized by law enforcement operation](https://techcrunch.com/2025/03/06/russian-crypto-exchange-garantex-seized-by-law-enforcement-operation/)[Employee at Multinational DVD Company Charged with Stealing, Selling Pre-Release Commercial DVDs for Blockbuster Films](https://www.justice.gov/opa/pr/employee-multinational-dvd-company-charged-stealing-selling-pre-release-commercial-dvds)[Data breach at Japanese telecom giant NTT hits 18,000 companies](https://www.bleepingcomputer.com/news/security/data-breach-at-japanese-telecom-giant-ntt-hits-18-000-companies/)[New DDoS Botnet Discovered: Over 30,000 Hacked Devices, Majority of Observed Activity Traced to Iran](https://www.greynoise.io/blog/new-ddos-botnet-discovered)**Malware**[Cellebrite zero-day exploit used to target phone of Serbian student activist](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/)[Uncovering .NET Malware Obfuscated by Encryption and Virtualization](https://unit42.paloaltonetworks.com/malware-obfuscation-techniques/)[Black Basta and Cactus Ransomware Groups Add BackConnect Malware to Their Arsenal](https://www.trendmicro.com/en_us/research/25/b/black-basta-cactus-ransomware-backconnect.html)[Fingerprint Heists: How your browser fingerprint can be stolen and used by fraudsters](https://www.group-ib.com/blog/fingerprint-heists/)[Medusa Ransomware Hits 40+ Victims in 2025, Demands $100K–$15M Ransom](https://thehackernews.com/2025/03/medusa-ransomware-hits-40-victims-in.html)**Hacking**[Havoc: SharePoint with Microsoft Graph API turns into FUD C2](https://www.fortinet.com/blog/threat-research/havoc-sharepoint-with-microsoft-graph-api-turns-into-fud-c2)[Jailbreaking to Jailbreak](https://www.linkedin.com/pulse/jailbreaking-jailbreak-luca-sambucci-fffdf/) [](https://thehackernews.com/2025/03/vmware-security-flaws-exploited-in.html)[VMware Security Flaws Exploited in the Wild—Broadcom Releases Urgent Patches](https://thehackernews.com/2025/03/vmware-security-flaws-exploited-in.html)[Thousands of websites hit by four backdoors in 3rd party JavaScript attack](https://cside.dev/blog/thousands-of-websites-hit-by-four-backdoors-in-3rd-party-javascript-attack)[Camera off: Akira deploys ransomware via webcam](https://www.s-rminform.com/latest-thinking/camera-off-akira-deploys-ransomware-via-webcam)[Flights to D.C. airport received false collision alerts while landing](https://www.msn.com/en-us/news/us/flights-to-dc-airport-receive-false-collision-alerts-while-landing/ar-AA1AaDvM)[AI’s Role in Turning Massive Data Leaks into Hacker Paydays: A Look at the Orange Breach](https://www.infostealers.com/article/ais-role-in-turning-massive-data-leaks-into-hacker-paydays-a-look-at-the-orange-breach/)**Intelligence and Information Warfare**[CISA: No Change on Defending Against Russian Cyber Threats](https://www.securityweek.com/cisa-no-change-on-defending-against-russian-cyber-threats/)[Call It What You Want: Threat Actor Delivers Highly Targeted Multistage Polyglot Malware](https://www.proofpoint.com/us/blog/threat-insight/call-it-what-you-want-threat-actor-delivers-highly-targeted-multistage-polyglot)[Polish space agency confirms cyberattack](https://www.theregister.com/2025/03/03/polish_space_agency_confirms_cyberattack/)[Silk Typhoon targeting IT supply chain](https://www.microsoft.com/en-us/security/blog/2025/03/05/silk-typhoon-targeting-it-supply-chain/)[The evolution of Dark Caracal tools: analysis of a campaign featuring Poco RAT](https://global.ptsecurity.com/analytics/pt-esc-threat-intelligence/the-evolution-of-dark-caracal-tools-analysis-of-a-campaign-featuring-poco-rat)[Lotus Blossom espionage group targets multiple industries with different versions of Sagerunex and hacking tools](https://blog.talosintelligence.com/lotus-blossom-espionage-group/)[10 Chinese Nationals Charged With Large-Scale Hacking Of U.S. And International Victims On Behalf Of The Chinese Government](https://www.justice.gov/usao-sdny/pr/10-chinese-nationals-charged-large-scale-hacking-us-and-international-victims-behalf)[New DOGE Staffer Has Ties to a Sanctioned Russian Oligarch](https://www.rollingstone.com/politics/politics-features/doge-staffer-corcos-wife-ties-russian-oligarch-1235291673/)[CIA director says US has paused sharing intelligence with Ukraine](https://techcrunch.com/2025/03/05/cia-director-says-us-has-paused-sharing-intelligence-with-ukraine/)**Cybersecurity**[The biggest data breaches of 2025 — so far](https://techcrunch.com/2025/02/28/the-biggest-data-breaches-of-2025-so-far/)[Investigations announced into how social media and video sharing platforms use UK children’s personal information](https://ico.org.uk/about-the-ico/media-centre/news-and-blogs/2025/02/investigations-announced-into-how-social-media-and-video-sharing-platforms-use-uk-children-s-personal-information/)[‘Bad Romance’: How Kaspersky Lab Failed to Conquer the Western Cybersecurity Market](https://aibaranov.github.io/kaspersky/)[Google Patches Pair of Exploited Vulnerabilities in Android](https://www.securityweek.com/google-patches-pair-of-exploited-vulnerabilities-in-android/) [](https://www.securityweek.com/organizations-still-not-patching-ot-due-to-disruption-concerns-survey/)[Organizations Still Not Patching OT Due to Disruption Concerns: Survey](https://www.securityweek.com/organizations-still-not-patching-ot-due-to-disruption-concerns-survey/)[New AI-Powered Scam Detection Features to Help Protect You on Android](https://security.googleblog.com/2025/03/new-ai-powered-scam-detection-features.html)[Who is the DOGE and X Technician Branden Spikes?](https://krebsonsecurity.com/2025/03/who-is-the-doge-and-x-technician-branden-spikes/)[Quantum computers threaten to break online security in minutes, expert warns](https://cosmosmagazine.com/technology/computing/quantum-computer-encryption-security/)[ENISA NIS360 2024](https://www.enisa.europa.eu/publications/enisa-nis360-2024)[Catalan court says NSO Group executives can be charged in spyware investigation](https://techcrunch.com/2025/03/05/catalan-court-says-nso-group-executives-can-be-charged-in-spyware-investigation/)Follow me on Twitter: [**@securityaffairs**](https://twitter.com/securityaffairs) and [**Facebook**](https://www.facebook.com/sec.affairs) and [**Mastodon**](https://infosec.exchange/@securityaffairs)[**Pierluigi Paganini**](http://www.linkedin.com/pub/pierluigi-paganini/b/742/559)**(** [**SecurityAffairs**](http://securityaffairs.co/wordpress/)**–** **hacking, newsletter)**
Related Tags:
Raspberry Typhoon
Lotus Blossom
Spring Dragon
DRAGONFISH
RADIUM
Silk Typhoon
GOLD SAHARA
Akira
PUNK SPIDER
Associated Indicators: