U.S. CISA adds Dassault Systèmes DELMIA Apriso flaw to its Known Exploited Vulnerabilities catalog

Akira Ransomware exploits year-old SonicWall flaw with multiple vectors

Google fixes critical Chrome flaw, researcher earns $43K

Kosovo man pleads guilty to running online criminal marketplace BlackDB

Attackers abuse ConnectWise ScreenConnect to drop AsyncRAT

Jaguar Land Rover discloses a data breach after recent cyberattack

Critical flaw SessionReaper in Commerce and Magento platforms lets attackers hijack customer accounts

Google Pixel 10 adds C2PA to camera and Photos to spot AI-generated or edited images

KillSec Ransomware is Attacking Healthcare Institutions in Brazil

Microsoft Patch Tuesday security updates for September 2025 fixed two zero-day flaws

SAP September 2025 Patch Day fixed 4 critical flaws

Supply chain attack targets npm, +2 Billion weekly npm downloads exposed

LunaLock Ransomware threatens victims by feeding stolen data to AI models

Hackers breached Salesloft 's GitHub in March, and used stole tokens in a mass attack

Canadian investment platform Wealthsimple disclosed a data breach

Venezuela's President Maduro said his Huawei Mate X6 cannot be hacked by US cyber spies

Czech cyber agency NUKIB flags Chinese espionage risks to critical infrastructure

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 61

Security Affairs newsletter Round 540 by Pierluigi Paganini - INTERNATIONAL EDITION