A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.———————————————————————————————————————————————————–Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.**[Iran confirmed it shut down internet to protect the country against cyberattacks](https://securityaffairs.com/179199/cyber-warfare-2/iran-confirmed-it-shut-down-internet-to-protect-the-country-against-cyberattacks.html)** **[Godfather Android trojan uses virtualization to hijack banking and crypto apps](https://securityaffairs.com/179191/malware/godfather-android-trojan-uses-virtualization-to-hijack-banking-and-crypto-apps.html)** **[Cloudflare blocked record-breaking 7.3 Tbps DDoS attack against a hosting provider](https://securityaffairs.com/179181/hacking/cloudflare-blocked-record-breaking-7-3-tbps-ddos-attack.html)** **[Linux flaws chain allows Root access across major distributions](https://securityaffairs.com/179174/security/linux-flaws-chain-allows-root-access-across-major-distributions.html)** **[A ransomware attack pushed the German napkin firm Fasana into insolvency](https://securityaffairs.com/179160/security/ransomware-attack-napkin-firm-fasana-insolvency.html)** **[Researchers discovered the largest data breach ever, exposing 16 billion login credentials](https://securityaffairs.com/179149/data-breach/researchers-discovered-the-largest-data-breach-ever-exposing-16-billion-login-credentials.html)** **[China-linked group Salt Typhoon breached satellite firm Viasat](https://securityaffairs.com/179146/security/china-linked-group-salt-typhoon-breached-satellite-firm-viasat.html)** **[Iran experienced a near-total national internet blackout](https://securityaffairs.com/179136/security/iran-experienced-a-near-total-national-internet-blackout.html)** **[Malicious Minecraft mods distributed by the Stargazers DaaS target Minecraft gamers](https://securityaffairs.com/179127/malware/malicious-minecraft-mods-distributed-by-the-stargazers-daas-target-minecraft-gamers.html)** **[Healthcare services company Episource data breach impacts 5.4 Million people](https://securityaffairs.com/179115/data-breach/healthcare-services-company-episource-data-breach-impacts-5-4-million-people.html)** **[Watch out, Veeam fixed a new critical bug in Backup -& Replication product](https://securityaffairs.com/179109/security/watch-out-veeam-fixed-a-new-critical-bug-in-backup-replication-product.html)** **[U.S. CISA adds Linux Kernel flaw to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/179104/hacking/u-s-cisa-adds-linux-kernel-flaw-to-its-known-exploited-vulnerabilities-catalog-2.html)** **[News Flodrix botnet targets vulnerable Langflow servers](https://securityaffairs.com/179094/malware/news-flodrix-botnet-targets-vulnerable-langflow-servers.html)** **[U.S. CISA adds Apple products, and TP-Link routers flaws to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/179086/security/u-s-cisa-adds-apple-products-and-tp-link-routers-flaws-to-its-known-exploited-vulnerabilities-catalog.html)** **[Attackers target Zyxel RCE vulnerability CVE-2023-28771](https://securityaffairs.com/179073/hacking/attackers-target-zyxel-rce-vulnerability-cve-2023-28771.html)** **[India-based car-sharing company Zoomcar suffered a data breach impacting 8.4M users](https://securityaffairs.com/179058/data-breach/india-based-car-sharing-company-zoomcar-suffered-a-data-breach-impacting-8-4m-users.html)** **[State-sponsored hackers compromised the email accounts of several Washington Post journalists](https://securityaffairs.com/179065/security/state-sponsored-hackers-compromised-the-email-accounts-of-several-washington-post-journalists.html)** [**Deep Web**](https://securityaffairs.com/179053/deep-web/europol-shut-down-archetyp-market-marketplace.html) **[Law enforcement operation shut down dark web drug marketplace Archetyp Market](https://securityaffairs.com/179053/deep-web/europol-shut-down-archetyp-market-marketplace.html)** **[New Anubis RaaS includes a wiper module](https://securityaffairs.com/179044/malware/anubis-raas-now-includes-a-wiper-module.html)** **[New Predator spyware infrastructure revealed activity in Mozambique for the first time](https://securityaffairs.com/179036/hacking/new-predator-spyware-infrastructure-revealed-activity-in-mozambique-for-first-time.html)** **[Canada’s second-largest airline WestJet is containing a cyberattack](https://securityaffairs.com/179027/uncategorized/canadas-airline-westjet-is-containing-a-cyberattack.html)****International Press — Newsletter****Cybercrime**[WestJet probes cybersecurity incident affecting app and internal systems](https://www.reuters.com/sustainability/boards-policy-regulation/westjet-probes-cybersecurity-incident-affecting-app-internal-systems-2025-06-14/)[Europe-wide takedown hits longest-standing dark web drug market](https://www.europol.europa.eu/media-press/newsroom/news/europe-wide-takedown-hits-longest-standing-dark-web-drug-market)[Zoomcar Says Hackers Accessed Data of 8.4 Million Users](https://www.securityweek.com/zoomcar-says-hackers-accessed-data-of-8-4-million-users/)[Understanding SCATTERED SPIDER: Tactics, Targets, and Defence Strategies by Daniel Collyer June 4, 2025](https://sosintel.co.uk/understanding-scattered-spider-tactics-targets-and-defence-strategies/)[United States Files Civil Forfeiture Complaint Against $225M in Funds Involved in Cryptocurrency Investment Fraud Money Laundering](https://www.justice.gov/opa/pr/united-states-files-civil-forfeiture-complaint-against-225m-funds-involved-cryptocurrency)[Krispy Kreme says November data breach impacts over 160,000 people](https://www.bleepingcomputer.com/news/security/krispy-kreme-says-november-data-breach-impacts-over-160-000-people/)[Cyberattack pushes German napkin company into insolvency](https://databreaches.net/2025/06/16/cyberattack-pushes-german-napkin-company-into-insolvency/)[Infrastructure Laundering: Blending in with the Cloud](https://krebsonsecurity.com/2025/01/infrastructure-laundering-blending-in-with-the-cloud/) [](https://www.theregister.com/2025/06/20/qilin_ransomware_top_dogs_treat/)[Qilin ransomware top dogs treat their minions to on-call lawyers for fierier negotiations](https://www.theregister.com/2025/06/20/qilin_ransomware_top_dogs_treat/)**Malware**[Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited to Deliver Flodrix Botnet](https://www.trendmicro.com/en_us/research/25/f/langflow-vulnerability-flodric-botnet.html)[2025 Blockchain and Cryptocurrency Threat Report: Malware in the Open Source Supply Chain](https://socket.dev/blog/2025-blockchain-and-cryptocurrency-threat-report)[Fake Minecraft mods distributed by the Stargazers Ghost Network to steal gamers’ data](https://research.checkpoint.com/2025/minecraft-mod-malware-stargazers/)[Threat actor Banana Squad exploits GitHub repos in new campaign](https://www.reversinglabs.com/blog/threat-actor-banana-squad-exploits-github-repos-in-new-campaign)[AntiDot Malware](https://catalyst.prodaft.com/public/report/antidot/overview#heading-1000)[Your Mobile App, Their Playground: The Dark side of the Virtualization](https://zimperium.com/blog/your-mobile-app-their-playground-the-dark-side-of-the-virtualization)**Hacking**[GreyNoise Observes Exploit Attempts Targeting Zyxel CVE-2023-28771](https://www.greynoise.io/blog/exploit-attempts-targeting-zyxel-cve-2023-28771) [](https://thehackernews.com/2025/06/cisa-warns-of-active-exploitation-of.html)[CISA Warns of Active Exploitation of Linux Kernel Privilege Escalation Vulnerability](https://thehackernews.com/2025/06/cisa-warns-of-active-exploitation-of.html)[Critical Veeam Backup -& Replication CVE-2025-23121](https://www.rapid7.com/blog/post/etr-critical-veeam-backup-replication-cve-2025-23121/)[Iran’s Largest Crypto Exchange Targeted in $90m Hack](https://www.trmlabs.com/resources/blog/irans-largest-crypto-exchange-targeted-in-90m-hack)[The 16-billion-record data breach that no one’s ever heard of](https://cybernews.com/security/billions-credentials-exposed-infostealers-data-leak/)[Qualys TRU Uncovers Chained LPE: SUSE 15 PAM to Full Root via libblockdev/udisks](https://blog.qualys.com/vulnerabilities-threat-research/2025/06/17/qualys-tru-uncovers-chained-lpe-suse-15-pam-to-full-root-via-libblockdev-udisks)**Intelligence and Information Warfare**[Predator Still Active, with New Client and Corporate Links Identified](https://www.recordedfuture.com/research/predator-still-active-new-links-identified)[Washington Post investigating cyberattack on journalists’ email accounts, source says](https://www.reuters.com/world/us/washington-post-investigating-cyberattack-journalists-wsj-reports-2025-06-15/)[Iran Slows Internet to Prevent Cyber Attacks Amid Escalating Regional Conflict](https://thehackernews.com/2025/06/iran-restricts-internet-access-to.html)[Threat Group Targets Companies in Taiwan](https://www.fortinet.com/blog/threat-research/threat-group-targets-companies-in-taiwan)[Internet collapses across Iran, say web-monitoring firms](https://techcrunch.com/2025/06/18/internet-collapses-across-iran-say-web-monitoring-firms/)[Viasat identified as victim in Chinese Salt Typhoon cyberespionage, Bloomberg News reports](https://www.reuters.com/business/media-telecom/viasat-identified-victim-chinese-salt-typhoon-cyberespionage-bloomberg-news-2025-06-17/)[Iran’s Cyber Army: Missing in Action](https://www.spytalk.co/p/irans-cyber-army-missing-in-action)[Countering AI Chip Smuggling Has Become a National Security Priority](https://www.cnas.org/publications/reports/countering-ai-chip-smuggling-has-become-a-national-security-priority)[Feeling Blue(Noroff): Inside a Sophisticated DPRK Web3 Intrusion](https://www.huntress.com/blog/inside-bluenoroff-web3-intrusion-analysis)[Iran’s government says it shut down internet to protect against cyberattacks](https://techcrunch.com/2025/06/20/irans-government-says-it-shut-down-internet-to-protect-against-cyberattacks/)**Cybersecurity**[The Impact of Artificial Intelligence on the Cybersecurity Workforce](https://www.nist.gov/blogs/cybersecurity-insights/impact-artificial-intelligence-cybersecurity-workforce)[The AI Arms Race: Deepfake Generation vs. Detection](https://www.securityweek.com/deepfakes-and-the-ai-battle-between-generation-and-detection/)[Managing Serial-to-Ethernet Exposures in Modern OT Networks](https://nexusconnect.io/articles/managing-serial-to-ethernet-exposures-in-modern-ot-networks)[No, the 16 billion credentials leak is not a new data breach](https://www.bleepingcomputer.com/news/security/no-the-16-billion-credentials-leak-is-not-a-new-data-breach/)[Defending the Internet: how Cloudflare blocked a monumental 7.3 Tbps DDoS attack](https://blog.cloudflare.com/defending-the-internet-how-cloudflare-blocked-a-monumental-7-3-tbps-ddos/)Follow me on Twitter: [@securityaffairs](https://twitter.com/securityaffairs) and [Facebook](https://www.facebook.com/sec.affairs) and [Mastodon](https://infosec.exchange/@securityaffairs)[Pierluigi Paganini](http://www.linkedin.com/pub/pierluigi-paganini/b/742/559)([SecurityAffairs](http://securityaffairs.co/wordpress/) — hacking, newsletter)
Related Tags:
Salt Typhoon
CVE-2025-3248
Storm-0875
Octo Tempest
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 334 – Computer And Electronic Product Manufacturing
NAICS: 517 – Telecommunications
NAICS: 541 – Professional
Scientific
Technical Services
NAICS: 52 – Finance And Insurance
Associated Indicators: