Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape————————————————————————————————————————————-Malware Newsletter[Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques](https://www.trendmicro.com/en_us/research/25/j/agenda-ransomware-deploys-linux-variant-on-windows-systems.html)[Uncovering Qilin attack methods exposed through multiple cases](https://blog.talosintelligence.com/uncovering-qilin-attack-methods-exposed-through-multiple-cases/)[Mem3nt0 mori — The Hacking Team is back!](https://securelist.com/forumtroll-apt-hacking-team-dante-spyware/117851/)[Insider Threats Loom while Ransom Payment Rates Plummet](https://www.coveware.com/blog/2025/10/24/insider-threats-loom-while-ransom-payment-rates-plummet)[ASERT Threat Summary: Aisuru and Related TurboMirai Botnet DDoS Attack Mitigation and Suppression—October 2025—v1.0](https://www.netscout.com/blog/asert/asert-threat-summary-aisuru-and-related-turbomirai-botnet-ddos)[Meet Atroposia: The Stealthy Feature-Packed RAT](https://www.varonis.com/blog/atroposia-rat)[New Android Malware Herodotus Mimics Human Behaviour to Evade Detection](https://www.threatfabric.com/blogs/new-android-malware-herodotus-mimics-human-behaviour-to-evade-detection)[Ukrainian organizations still heavily targeted by Russian attacks](https://www.security.com/blog-post/ukraine-russia-attacks)[Crypto wasted: BlueNoroff’s ghost mirage of funding and jobs](https://securelist.com/bluenoroff-apt-campaigns-ghostcall-and-ghosthire/117842/)[10 npm Typosquatted Packages Deploy Multi-Stage Credential Harvester](https://socket.dev/blog/10-npm-typosquatted-packages-deploy-credential-harvester)[PhantomRaven: NPM Malware Hidden in Invisible Dependencies](https://www.koi.ai/blog/phantomraven-npm-malware-hidden-in-invisible-dependencies)[UNC6384 Weaponizes ZDI-CAN-25373 Vulnerability to Deploy PlugX Against Hungarian and Belgian Diplomatic Entities](https://arcticwolf.com/resources/blog/unc6384-weaponizes-zdi-can-25373-vulnerability-to-deploy-plugx/)[Suspected Nation-State Threat Actor Uses New Airstalk Malware in a Supply Chain Attack](https://unit42.paloaltonetworks.com/new-windows-based-malware-family-airstalk/)[Security Community Slams MIT-linked Report Claiming AI Powers 80% of Ransomware](https://socket.dev/blog/security-community-slams-mit-linked-report-claiming-ai-powers-80-of-ransomware)[NeuPerm: Disrupting Malware Hidden in Neural Network Parameters by Leveraging Permutation Symmetry](https://arxiv.org/abs/2510.20367)[Detecting Visualized Malicious Code Through Low-Redundancy Convolution](https://www.mdpi.com/2073-431X/14/11/470)[Efficient Image-Based Memory Forensics for Fileless Malware Detection Using Texture Descriptors and LIME-Guided Deep Learning](https://www.mdpi.com/2073-431X/14/11/467)[Alleged Meduza Stealer malware admins arrested after hacking Russian org](https://www.bleepingcomputer.com/news/security/alleged-meduza-stealer-malware-admins-arrested-after-hacking-russian-org/)[Tap-and-Steal: The Rise of NFC Relay Malware on Mobile Devices](https://zimperium.com/blog/tap-and-steal-the-rise-of-nfc-relay-malware-on-mobile-devices)Follow me on Twitter: [@securityaffairs](https://twitter.com/securityaffairs) and [Facebook](https://www.facebook.com/sec.affairs) and [Mastodon](https://infosec.exchange/@securityaffairs)[Pierluigi Paganini](http://www.linkedin.com/pub/pierluigi-paganini/b/742/559)([SecurityAffairs](http://securityaffairs.co/wordpress/) — hacking, [newsletter](https://securityaffairs.com/183862/security/security-affairs-malware-newsletter-round-68.html))
Related Tags:
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 334 – Computer And Electronic Product Manufacturing
NAICS: 517 – Telecommunications
NAICS: 541 – Professional
Scientific
Technical Services
NAICS: 518 – Computing Infrastructure Providers
Data Processing
Web Hosting
Related Services
NAICS: 33 – Manufacturing – Metal
Electronics And Other
NAICS: 51 – Information
Thoper
Kaba
Associated Indicators: