Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.
With zero coding skills, and in a disturbingly short time, I was able to assemble camera feeds from around the world into a ...
Unwitting victims are now being tricked into installing malware via Windows Terminal, but some experts say this is old news.
Dubbed InstallFix by Push Security, the scheme inserts instructions to download malware during the Claude Code install process on cloned websites.
A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.
A Chrome extension named "QuickLens - Search Screen with Google Lens" has been removed from the Chrome Web Store after it was ...
A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
WhatsApp is making its web version more functional. The platform is rolling out voice and video calls directly in web browsers, allowing users to make calls on WhatsApp Web without downloading the ...
In January 2026, Microsoft Defender Experts identified a new evolution in the ongoing ClickFix campaign. This updated tactic deliberately crashes victims’ browsers and then attempts to lure users into ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results