New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
Dark Reading

ClickFix Attacks Abuses DNS Lookup Command to Deliver ModeloRAT

ClickFix campaigns have adapted to the latest defenses with a new technique to trick users into infecting their own machines with malware.

I've used Windows for decades, but I tried Linux to see if it's truly 'easy' now - and one thing surprised me

The first is a Surface Go 2, a six-year-old machine that just barely squeaked in under the Windows 11 compatibility wire with ...

PromptSpy is the first known Android malware to use generative AI at runtime

Researchers have discovered the first known Android malware to use generative AI in its execution flow, using Google's Gemini ...

De-Enshittify an Existing Install of Windows 11 ⭐

If you want to de-enshittify Windows 11 but find starting over from scratch to be daunting, then this is for you.

Intellexa’s Predator spyware used to hack iPhone of journalist in Angola, research says

Amnesty International says it found evidence that a government customer of Intellexa, a sanctioned surveillance vendor, used ...

North Korean job scammers target JavaScript and Python developers with fake interview tasks spreading malware

Operation Dream Job is evolving once again, and now comes through malicious dependencies on bare-bones projects.

Microsoft Just Patched a Major Security Vulnerability for This Popular Windows App

Users could be tricked into running arbitrary code, but the issue was patched last week.

CAPTCHA or trap? Windows users tricked into installing malware on their PCs

StealC malware campaign exploits fake CAPTCHA pages to steal sensitive data while blending into normal system activity.