**Security Affairs Newsletter Round 553 - International Edition**
Dear readers, welcome to the latest edition of our Security Affairs newsletter! Every week, we bring you the most important security news from around the world. This round is packed with stories about hacking groups, vulnerabilities, data breaches, and more.
Perth Hacker Jailed for Setting Up Fake Qantas Wi-Fi Network
A Perth man has been jailed after setting up a fake Wi-Fi network that tricked travelers into logging in, allowing him to steal sensitive information. Michael Clapsis was caught after he used the compromised data to access sex videos on a victim's phone.
Europol Shuts Down 'Cryptomixer' Cryptocurrency Mixing Service
The European Union Agency for Law Enforcement Cooperation (Europol) has shut down a cryptocurrency mixing service called 'Cryptomixer'. The service was used by cybercriminals to launder their illicit gains, but it has now been taken offline.
Universities Disclose Data Breach After Oracle Hack
Penn and Phoenix Universities have disclosed a data breach after hackers compromised an Oracle database. The breach is believed to have occurred in March 2023, but the universities only recently discovered the issue.
ASUS Confirms Third-Party Breach as Hackers Release Sample Files
A major hardware manufacturer, ASUS, has confirmed that it was hit by a third-party breach. The hackers released sample files to prove their claim, which included sensitive customer data.
Twin Brothers Sentenced for Wire Fraud and Conspiring to Hack US Department of State
Two brothers have been sentenced to prison for wire fraud and conspiring to hack into the United States Department of State. The men used the stolen data to commit identity theft and other crimes.
Russia Blocks FaceTime and Snapchat Over Terrorist Use Allegations
The Russian government has blocked popular messaging apps, including FaceTime and Snapchat, over allegations that they were being used by terrorists. However, human rights groups have raised concerns about the move.
New Android Trojan Disguised as File Manager Emerges with Zero Detection Rate
A new Android Trojan has been discovered, disguised as a file manager app. The malware is highly sophisticated and has managed to evade detection by all major security software providers.
Malicious Rust Crate Evokes Cross-Platform Payloads for Silent Execution
A malicious Rust crate called 'evm-units' has been discovered, which can create cross-platform payloads for silent execution. The crate was designed to be used as a development tool but has since been hijacked by hackers.
Attackers Exploit Critical Vulnerability in King Addons for Elementor Plugin
A critical vulnerability has been discovered in the 'King Addons' plugin for WordPress, which allows attackers to inject malicious code. The vulnerability is highly exploitable and should be patched as soon as possible.
Google Patches 107 Android Flaws, Including Two Framework Bugs Exploited in the Wild
Google has released a major security update for Android, patching no fewer than 107 vulnerabilities. Two of these bugs were particularly noteworthy, having been exploited in the wild by attackers.
Attackers Actively Exploiting Critical Vulnerability in Array Networks Array AG Series
A critical vulnerability has been discovered in the 'Array Networks' product line, allowing attackers to inject malicious code. The vulnerability is highly exploitable and should be patched as soon as possible.
Researchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera
Security researchers have captured a remote-working scheme used by the notorious Lazarus hacking group. The attack was carried out using a combination of social engineering and malware.
US Imposes Sanctions on Predator Cyber Threat Group Intellexa
The US government has imposed sanctions on the 'Intellexa' cyber threat group, also known as 'Predator'. The group is accused of being involved in numerous high-profile attacks against organizations around the world.
China-Nexus Cyber Threat Groups Rapidly Exploit React2Shell Vulnerability
A critical vulnerability has been discovered in the 'React2Shell' tool, which allows attackers to inject malicious code. China-nexus cyber threat groups have already begun exploiting this bug to carry out attacks.
Coupang Confirms Leak of 33.7 Million Users' Data
Korean e-commerce giant Coupang has confirmed that it suffered a data breach, exposing sensitive information belonging to over 33 million users. The breach is believed to have occurred in February 2023.
India Orders Messaging Apps to Work Only With Active SIM Cards
The Indian government has ordered messaging apps to only work with active SIM cards, in an effort to prevent fraud and misuse of the platforms.
Cloudflare Releases Q3 DDoS Threat Report - Aisuru Botnet on the Rise
CLOUDFLARE's latest DDoS threat report has revealed a significant increase in attacks from the 'Aisuru' botnet. The report highlights the growing sophistication of cyberattacks and the need for organizations to stay vigilant.
Apache Tika Vulnerability CVE-2025-66516 Requires Urgent Patch
A critical vulnerability has been discovered in Apache Tika, a popular tool used for content analysis. The bug allows attackers to inject malicious code and should be patched as soon as possible.
Porsche Owners in Russia Unable to Start Cars After System Failure
Thousands of Porsche owners in Russia have reported being unable to start their cars after the company's system failed. The issue is believed to be related to a cyberattack, but details are still emerging.
Thank you for reading our newsletter! Don't forget to follow me on Twitter: @securityaffairs and Facebook and Mastodon to stay up-to-date with the latest security news.