Security Affairs Malware Newsletter Round 89 Highlights New Ransomware and Backdoor Targeting Ukrainian Entities

The Security Affairs Malware Newsletter Round 89 highlights a new ransomware payload under malware analysis, alongside DRILLAPP, a backdoor targeting Ukrainian entities with suspected ties to the threat actor Laundry Bear. Compromised WordPress websites are being exploited to advance a global stealer operation, expanding the attack surface for credential and data theft. The newsletter also addresses security concerns surrounding AI coding tools, though no specific vulnerabilities or incidents are detailed. No explicit dates, CVE IDs, or technical indicators (e.g., hashes, IOCs) are provided in the available content. The focus remains on emerging malware trends, state-linked cyber threats, and exploitation of trusted platforms.