Ethical Hacking News
Read more about the evolving threat landscape in our latest newsletter round, where we delve into the world of malware and explore recent incidents and trends.
The latest Security Affairs Malware Newsletter Round 87 highlights the evolving nature of malware threats and various incidents and trends in the malware world. Organizations use cookies, both necessary and non-necessary, to improve user experience while navigating their websites. Ambitious hackers are targeting IP cameras across Israel and Gulf states by Iran-linked hackers, with the aim of obtaining military intelligence. The newsletter covers instances of malware deployments against U.S. organizations by Iranian APT groups and ongoing exploitation of recently patched flaws in Cisco products. Malware campaigns, such as ClickFix and StegaBin, exploit Windows Terminal and pastebin steganography to deliver malicious payloads. The emergence of new malware variants and tactics continues to shape the evolving threat landscape, including the use of blockchain technology for malware propagation. Nation-state sponsored attacks, such as targeting South American telecommunication providers with malware implants, are also highlighted in the newsletter.
The latest installment of the Security Affairs Malware Newsletter Round, titled "Round 87," serves as a testament to the ever-evolving nature of malware threats. This newsletter, a collection of recent articles and research on malware in the international landscape, provides a glimpse into the complex web of malicious actors and their tactics.
According to the provided context data, various organizations are taking steps to improve user experience while navigating through their websites. To achieve this, these entities employ cookies, which can be broadly categorized into two types: necessary and non-necessary cookies. Necessary cookies are essential for the basic functioning of a website and include those used for security features. On the other hand, non-necessary cookies serve specific purposes such as collecting user personal data via analytics or facilitating advertising campaigns.
The newsletter highlights several notable incidents and trends in the malware world. One such incident involves an ongoing FBI probe into an intrusion that has compromised sensitive surveillance information systems. This incident underscores the importance of robust cybersecurity measures to prevent unauthorized access to critical infrastructure.
Another significant development is the targeting of IP cameras across Israel and Gulf states by Iran-linked hackers, with the aim of obtaining military intelligence. This highlights the increasing sophistication of nation-state actors in their malicious activities, often employing advanced techniques such as pastebin steganography to deploy malware.
The Security Affairs Malware Newsletter Round 87 also covers instances of malware deployments against U.S. organizations by Iranian APT groups, specifically the MuddyWater group, which has been linked to the Dindoor malware campaign. Furthermore, Cisco flags ongoing exploitation of two recently patched flaws in its Catalyst SD-WAN products, emphasizing the importance of regular software updates to prevent vulnerabilities.
Microsoft warns users about a ClickFix campaign that exploits Windows Terminal to deliver malicious payloads, including the Lumma Stealer ransomware. This serves as a reminder for organizations and individuals alike to remain vigilant against social engineering tactics and ensure proper system hygiene.
In addition, the newsletter touches upon various other threats, such as the targeting of government officials in Iraq by an APT group known as Dust Specter, and the use of malware to compromise networks within U.S. banks, airports, and software companies.
The emergence of new malware variants and tactics continues to shape the evolving threat landscape. For instance, the StegaBin campaign utilizes pastebin steganography to deploy malicious npm packages, while SloppyLemming employs BurrowShell and Rust-based RATs to target Pakistan and Bangladesh. Meanwhile, Silver Dragon targets organizations in Southeast Asia and Europe with its malware.
The ongoing struggle between cybersecurity professionals and attackers is exemplified by the recent incident involving Phobos Ransomware, where the administrator has pleaded guilty to charges related to the campaign. This serves as a stark reminder of the consequences faced by those involved in malicious activities.
Furthermore, researchers continue to explore new methods for detecting malware, such as the use of Domain-Generation Algorithm (DGA) detection methods for mobile device spearphishing. Another notable development is the emergence of hybrid opcode feature selection frameworks for efficient and effective IoT malware detection.
The increasing use of blockchain technology in the context of malware propagation highlights the growing complexity of cybersecurity challenges. Distributed trust models, a concept that has gained prominence in recent years, are being utilized by attackers to spread malware while maintaining plausible deniability.
Finally, the newsletter touches upon instances of nation-state sponsored attacks, such as the targeting of South American telecommunication providers with malware implants, and the exploitation of vulnerabilities in various software products, including those from Apple and Rockwell.
In conclusion, the Security Affairs Malware Newsletter Round 87 provides a comprehensive overview of the current threat landscape. It serves as a stark reminder of the importance of staying informed about emerging threats and maintaining robust cybersecurity measures to prevent attacks.
Related Information:
https://www.ethicalhackingnews.com/articles/A-Global-Malware-Ecosystem-The-Evolving-Threat-Landscape-ehn.shtml
https://securityaffairs.com/189103/malware/security-affairs-malware-newsletter-round-87.html
https://cybernoz.com/security-affairs-malware-newsletter-round-85/
https://www.cyfirma.com/research/apt-profile-muddywater/
https://www.group-ib.com/masked-actors/muddywater/
https://www.zscaler.com/blogs/security-research/dust-specter-apt-targets-government-officials-iraq
https://securityboulevard.com/2026/03/dust-specter-apt-targets-government-officials-in-iraq/
https://thehackernews.com/2026/03/apt41-linked-silver-dragon-targets.html
https://cybersecuritynews.com/silver-dragon-apt-group/
Published: Sun Mar 8 09:00:07 2026 by llama3.2 3B Q4_K_M
