A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.———————————————————————————————————————————————————–Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.[Embargo Ransomware nets $34.2M in crypto since April 2024](https://securityaffairs.com/180981/cyber-crime/embargo-ransomware-nets-34-2m-in-crypto-since-april-2024.html) [Germany limits police spyware use to serious crimes](https://securityaffairs.com/180976/laws-and-regulations/germany-limits-police-spyware-use-to-serious-crimes.html) [Phishing attacks exploit WinRAR flaw CVE-2025-8088 to install RomCom](https://securityaffairs.com/180967/hacking/phishing-attacks-exploit-winrar-flaw-cve-2025-8088-to-install-romcom.html) [French firm Bouygues Telecom suffered a data breach impacting 6.4M customers](https://securityaffairs.com/180958/data-breach/french-firm-bouygues-telecom-suffered-a-data-breach-impacting-6-4m-customers.html) [Columbia University data breach impacted 868,969 people](https://securityaffairs.com/180948/data-breach/columbia-university-data-breach-impacted-868969-people.html) [SonicWall dismisses zero-day fears after Ransomware probe](https://securityaffairs.com/180940/security/sonicwall-dismisses-zero-day-fears-after-ransomware-probe.html) [Air France and KLM disclosed data breaches following the hack of a third-party platform](https://securityaffairs.com/180932/data-breach/air-france-and-klm-disclosed-data-breaches-following-the-hack-of-a-third-party-platform.html) [CISA, Microsoft warn of critical Exchange hybrid flaw CVE-2025-53786](https://securityaffairs.com/180923/security/cisa-microsoft-warn-of-critical-exchange-hybrid-flaw-cve-2025-53786.html) [Microsoft unveils Project Ire: AI that autonomously detects malware](https://securityaffairs.com/180908/malware/microsoft-unveils-project-ire-ai-that-autonomously-detects-malware.html) [CERT-UA warns of UAC-0099 phishing attacks targeting Ukraine’s defense sector](https://securityaffairs.com/180896/apt/cert-ua-warns-of-uac-0099-phishing-attacks-targeting-ukraines-defense-sector.html) [Over 100 Dell models exposed to critical ControlVault3 firmware bugs](https://securityaffairs.com/180883/hacking/over-100-dell-models-exposed-to-critical-controlvault3-firmware-bugs.html) [How CTEM Boosts Visibility and Shrinks Attack Surfaces in Hybrid and Cloud Environments](https://securityaffairs.com/180871/security/how-ctem-boosts-visibility-and-shrinks-attack-surfaces-in-hybrid-and-cloud-environments.html) [WhatsApp cracks down on 6.8M scam accounts in global takedown](https://securityaffairs.com/180864/cyber-crime/whatsapp-cracks-down-on-6-8m-scam-accounts-in-global-takedown.html) [Trend Micro fixes two actively exploited Apex One RCE flaws](https://securityaffairs.com/180856/hacking/trend-micro-fixes-two-actively-exploited-apex-one-rce-flaws.html) [U.S. CISA adds D-Link cameras and Network Video Recorder flaws to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/180833/security/u-s-cisa-adds-d-link-cameras-and-network-video-recorder-flaws-to-its-known-exploited-vulnerabilities-catalog.html) [Google fixed two Qualcomm bugs that were actively exploited in the wild](https://securityaffairs.com/180847/security/google-fixed-two-qualcomm-bugs-that-were-actively-exploited-in-the-wild.html) [Zero Day Quest returns: Microsoft ups the stakes with $5M bug bounty](https://securityaffairs.com/180822/hacking/zero-day-quest-returns-microsoft-ups-the-stakes-with-5m-bug-bounty.html) [Cisco disclosed a CRM data breach via vishing attack](https://securityaffairs.com/180816/data-breach/cisco-disclosed-a-crm-data-breach-via-vishing-attack.html) [Exposed Without a Breach: The Cost of Data Blindness](https://securityaffairs.com/180813/security/exposed-without-a-breach-the-cost-of-data-blindness.html) [SonicWall investigates possible zero-day amid Akira ransomware surge](https://securityaffairs.com/180803/security/sonicwall-investigates-possible-zero-day-amid-akira-ransomware-surge.html) [Chaining NVIDIA’s Triton Server flaws exposes AI systems to remote takeover](https://securityaffairs.com/180793/security/chaining-nvidias-triton-server-flaws-exposes-ai-systems-to-remote-takeover.html) [Hacking group D4rk4rmy claimed the hack of Monte-Carlo Société des Bains de Mer](https://securityaffairs.com/180780/cyber-crime/hacking-group-d4rk4rmy-claimed-the-hack-of-monte-carlo-societe-des-bains-de-mer.html) [Northwest Radiologists data breach hits 350,000 in Washington](https://securityaffairs.com/180772/data-breach/northwest-radiologists-data-breach-hits-350000-in-washington.html) [PlayPraetor Android RAT expands rapidly across Spanish and French-speaking regions](https://securityaffairs.com/180760/malware/playpraetor-android-rat-expands-rapidly-across-spanish-and-french-speaking-regions.html) [Lovense flaws expose emails and allow account takeover](https://securityaffairs.com/180748/breaking-news/lovense-flaws-expose-emails-and-allow-account-takeover.html) [Nation-state group CL-STA-0969 targeted Southeast Asian telecoms in 2024](https://securityaffairs.com/180737/apt/nation-state-group-cl-sta-0969-targeted-southeast-asian-telecoms-in-2024.html) [Akira Ransomware targets SonicWall VPNs in likely zero-day attacks](https://securityaffairs.com/180724/cyber-crime/akira-ransomware-targets-sonicwall-vpns-in-likely-zero-day-attacks.html)**International Press — Newsletter****Cybercrime**[Warning: Phishing campaign detected](https://blog.mozilla.org/addons/2025/08/01/warning-phishing-campaign-detected/)[New WhatsApp Tools and Tips to Beat Messaging Scams](https://about.fb.com/news/2025/08/new-whatsapp-tools-tips-beat-messaging-scams/)[GenAI Used For Phishing Websites Impersonating Brazil’s Government](https://www.zscaler.com/blogs/security-research/genai-used-phishing-websites-impersonating-brazil-s-government)[FraudOnTok](https://www.ctm360.com/reports/fraudontok-tiktok-shop-scam-report)[FinCEN Issues Notice on the Use of Convertible Virtual Currency Kiosks for Scam Payments and Other Illicit Activity](https://www.fincen.gov/news/news-releases/fincen-issues-notice-use-convertible-virtual-currency-kiosks-scam-payments-and)[Nigerian Man Extradited To Face Hacking, Fraud, And Identity Theft Charges](https://www.justice.gov/usao-sdny/pr/nigerian-man-extradited-face-hacking-fraud-and-identity-theft-charges)[Update: Akira ransomware group targets SonicWall VPN appliances](https://fieldeffect.com/blog/update-akira-ransomware-group-targets-sonicwall-vpn-appliances)[Columbia University data breach impacts nearly 870,000 individuals](https://www.bleepingcomputer.com/news/security/columbia-university-data-breach-impacts-nearly-870-000-students-applicants-employees/)[Who Got Arrested in the Raid on the XSS Crime Forum?](https://krebsonsecurity.com/2025/08/who-got-arrested-in-the-raid-on-the-xss-crime-forum/)[Unmasking Embargo Ransomware: A Deep Dive Into the Group’s TTPs and BlackCat Links](https://www.trmlabs.com/resources/blog/unmasking-embargo-ransomware-a-deep-dive-into-the-groups-ttps-and-blackcat-links)**Malware**[Arctic Wolf Observes July 2025 Uptick in Akira Ransomware Activity Targeting SonicWall SSL VPN](https://arcticwolf.com/resources/blog/arctic-wolf-observes-july-2025-uptick-in-akira-ransomware-activity-targeting-sonicwall-ssl-vpn/)[ToxicPanda: The Android Banking Trojan Targeting Europe](https://www.bitsight.com/blog/toxicpanda-android-banking-malware-2025-study)[‘CAPTCHAgeddon’ Unmasking the Viral Evolution of the ClickFix Browser-Based Threat](https://guard.io/labs/captchageddon-unmasking-the-viral-evolution-of-the-clickfix-browser-based-threat)[11 Malicious Go Packages Distribute Obfuscated Remote Payloads](https://socket.dev/blog/11-malicious-go-packages-distribute-obfuscated-remote-payloads)[New Infection Chain and ConfuserEx-Based Obfuscation for DarkCloud Stealer](https://unit42.paloaltonetworks.com/new-darkcloud-stealer-infection-chain/)**Hacking**[Lovense: The Company That Lies to Security Researchers](https://bobdahacker.com/blog/lovense-still-leaking-user-emails)[Breaking NVIDIA Triton: CVE-2025-23319 — A Vulnerability Chain Leading to AI Server Takeover](https://www.wiz.io/blog/nvidia-triton-cve-2025-23319-vuln-chain-to-ai-server)[Huntress Threat Advisory: Active Exploitation of SonicWall VPNs](https://www.huntress.com/blog/exploitation-of-sonicwall-vpn)[Google’s August Patch Fixes Two Qualcomm Vulnerabilities Exploited in the Wild](https://thehackernews.com/2025/08/google-fixes-3-android-vulnerabilities.html)[Trend Micro Confirms Active Exploitation of Critical Apex One Flaws in On-Premise Systems](https://thehackernews.com/2025/08/trend-micro-confirms-active.html)[ReVault! When your SoC turns against you…](https://blog.talosintelligence.com/revault-when-your-soc-turns-against-you/)[Red Teams Jailbreak GPT-5 With Ease, Warn It’s ‘Nearly Unusable’ for Enterprise](https://www.securityweek.com/red-teams-breach-gpt-5-with-ease-warn-its-nearly-unusable-for-enterprise/)**Intelligence and Information Warfare**[The Covert Operator’s Playbook: Infiltration of Global Telecom Networks](https://unit42.paloaltonetworks.com/infiltration-of-global-telecom-networks/)[Hacked Crimean servers reveal information about abducted children, Ukraine says](https://therecord.media/hacked-crimean-servers-abducted-children)[Updated UAC-0099 toolkit: MATCHBOIL, MATCHWOK, DRAGSTARE](https://cert.gov.ua/article/6284949)[WinRAR zero-day exploited to plant malware on archive extraction](https://www.bleepingcomputer.com/news/security/winrar-zero-day-flaw-exploited-by-romcom-hackers-in-phishing-attacks/)[Germany’s top court holds that police can only use spyware to investigate serious crimes](https://therecord.media/germany-spyware-limitations-court-rules)[‘A million calls an hour’: Israel relying on Microsoft cloud for expansive surveillance of Palestinians](https://www.theguardian.com/world/2025/aug/06/microsoft-israeli-military-palestinian-phone-calls-cloud)**Cybersecurity**[Chinese Researchers Suggest Lasers and Sabotage to Counter Musk’s Starlink Satellites](https://www.securityweek.com/chinese-researchers-suggest-lasers-and-sabotage-to-counter-musks-starlink-satellites/)[SonicWall Investigating Potential SSL VPN Zero-Day After 20+ Targeted Attacks Reported](https://thehackernews.com/2025/08/sonicwall-investigating-potential-ssl.html)[AI Rewrote Its Code When I Asked About Human Nature](https://www-psychologytoday-com.cdn.ampproject.org/c/s/www.psychologytoday.com/us/blog/the-algorithmic-mind/202508/ai-rewrote-its-code-when-i-asked-about-human-nature/amp)[Cisco Says User Data Stolen in CRM Hack](https://www.securityweek.com/cisco-says-user-data-stolen-in-crm-hack/)[Most cybersecurity risk comes from just 10% of employees](https://www.helpnetsecurity.com/2025/07/16/human-cybersecurity-risk-employees/)[Organizations Warned of Vulnerability in Microsoft Exchange Hybrid Deployment](https://www.securityweek.com/organizations-warned-of-vulnerability-in-microsoft-exchange-hybrid-deployment/)[Air France and KLM disclose data breaches impacting customers](https://www.bleepingcomputer.com/news/security/air-france-and-klm-disclose-data-breaches-impacting-customers/)[Google Discloses Data Breach via Salesforce Hack](https://www.securityweek.com/google-discloses-salesforce-hack/)[Preventing ZIP parser confusion attacks on Python package installers](https://blog.pypi.org/posts/2025-08-07-wheel-archive-confusion-attacks/#wheels-are-zips-and-zips-are-complicated)[Europe prioritising spend properly as H1 cybersecurity market hits double-digit growth](https://www.channelweb.co.uk/news/2025/europe-prioritising-spend-properly-as-h1-cybersecurity-market-hits-double-digit-growth)Follow me on Twitter: [@securityaffairs](https://twitter.com/securityaffairs) and [Facebook](https://www.facebook.com/sec.affairs) and [Mastodon](https://infosec.exchange/@securityaffairs)[Pierluigi Paganini](http://www.linkedin.com/pub/pierluigi-paganini/b/742/559)([SecurityAffairs](http://securityaffairs.co/wordpress/) — hacking, newsletter)
Related Tags:
CVE-2025-53786
CVE-2025-23319
Howling Scorpius
GOLD SAHARA
Akira
PUNK SPIDER
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 334 – Computer And Electronic Product Manufacturing
NAICS: 517 – Telecommunications
Associated Indicators: