Advanced watering hole attacks leveraging legitimate domains for RAT deployment
Weekly insights on threats, vulnerabilities, and security best practices.
Attackers now leverage DNS TXT records and nslookup commands to deliver PowerShell payloads in ClickFix campaigns, bypassing traditional detection mechanisms through legitimate DNS infrastructure.
North Korean threat actors deploy AI-generated video content and ClickFix social engineering to distribute cross-platform malware targeting cryptocurrency sector assets.
Analysis of the QuickLens Chrome extension compromise reveals sophisticated supply chain attack TTPs targeting crypto wallet credentials through ClickFix social engineering.
