ClickFix Archives • Page 4 of 4 • Daily CyberSecurity

Fileless AsyncRAT Campaign Targets German Users with Stealthy PowerShell Payload BingX cyberattack FortiGate SSO Attacks Firewall Config Theft

BingX cyberattack FortiGate SSO Attacks Firewall Config Theft

Fileless AsyncRAT Campaign Targets German Users with Stealthy PowerShell Payload

Do Son June 17, 2025

In a recent investigation, threat intelligence firm CloudSEK uncovered a stealthy, fileless malware campaign leveraging social engineering...

New Malware Duo HijackLoader & DeerStealer Surge: Bypassing Defenses for Data Theft Attack chain diagram

New Malware Duo HijackLoader & DeerStealer Surge: Bypassing Defenses for Data Theft

Do Son June 16, 2025

Recently, eSentire’s Threat Response Unit (TRU) uncovered an alarming surge in campaigns leveraging a malware duo: HijackLoader...

Discord Invite System Hijacked: Expired Links Now Lead to Crypto-Stealing Malware

Do Son June 15, 2025

In the latest expose from Check Point Research, Discord’s once-trusted invite system has been turned against its...

Booking.com Spoofed in ClickFix Malware Surge Targeting Hotels and Travel Sector ClickFix Phishing, Booking.com Scam

Booking.com Spoofed in ClickFix Malware Surge Targeting Hotels and Travel Sector

Do Son June 6, 2025

According to Cofense Intelligence, a sophisticated and evolving phishing campaign is using spoofed Booking.com emails and fake...

Deceptive CAPTCHA: ClickFix Campaign Uses Clipboard Injection to Deliver Malware Example infection chain from CAPTCHA to Lumma Stealer

Deceptive CAPTCHA: ClickFix Campaign Uses Clipboard Injection to Deliver Malware

Do Son May 26, 2025

Threat actors have ramped up a new social engineering campaign, dubbed “ClickFix,” where fake CAPTCHA prompts embedded...

Google Uncovers LOSTKEYS Malware Used by Russian COLDRIVER for Cyber Espionage LOSTKEYS Malware, COLDRIVER

Google Uncovers LOSTKEYS Malware Used by Russian COLDRIVER for Cyber Espionage

Do Son May 8, 2025

In a concerning escalation of cyber-espionage activity, Google’s Threat Intelligence Group (GTIG) has revealed the emergence of...

APT36 Suspected in India Gov Spoofing Phishing with ClickFix Tactics APT36 phishing, ClickFix campaign

APT36 Suspected in India Gov Spoofing Phishing with ClickFix Tactics

Do Son May 8, 2025

Hunt.io, a threat hunting platform, has revealed a sophisticated phishing campaign using ClickFix-style tactics and spoofed Indian...

State-Sponsored Actors Adopt ClickFix Technique in Cyber Espionage ClickFix State-sponsored actors

State-Sponsored Actors Adopt ClickFix Technique in Cyber Espionage

Do Son April 21, 2025

In a recent cybersecurity report by Proofpoint researchers, a notable trend has emerged: state-sponsored actors are increasingly...

Interlock Ransomware Uses Evolving Tactics to Evade Detection Interlock Ransomware, ClickFix

Interlock Ransomware Uses Evolving Tactics to Evade Detection

Do Son April 18, 2025

A new report by Sekoia Threat Detection & Research (TDR) details the activities of Interlock, a ransomware...

Pakistan-Linked APT Exploits Youth Laptop Scheme in Cyberattack Targeting India

Do Son March 28, 2025

A new cybersecurity report by CYFIRMA has uncovered a sophisticated cyberattack campaign targeting Indian users, allegedly orchestrated...

ClearFake Malware Variant Exploits Web3 in New Attacks Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

ClearFake Malware Variant Exploits Web3 in New Attacks

Do Son March 19, 2025

A new variant of the ClearFake malware is exploiting Web3 capabilities to enhance its malicious operations, according...

Booking.com Impersonated in Phishing Campaign Delivering Credential-Stealing Malware Booking Phishing Campaign

Booking.com Impersonated in Phishing Campaign Delivering Credential-Stealing Malware

Do Son March 15, 2025

A sophisticated phishing campaign impersonating Booking.com is targeting organizations in the hospitality industry, using a novel social...

Lazarus Group’s Infostealer Malware Targets Developers in New Espionage Campaigns

Do Son February 13, 2025

North Korea’s infamous Lazarus Group is back in the spotlight, this time deploying a sophisticated infostealer malware...

Lumma Stealer Malware Now Using ChaCha20 Cipher for Evasion

Do Son January 24, 2025

eSentire’s Threat Response Unit (TRU) has identified a new tactic employed by the developers of the Lumma...

Lazarus APT Targets Job Seekers with “Contagious Interview” Campaign Using ClickFix Technique Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Lazarus APT Targets Job Seekers with “Contagious Interview” Campaign Using ClickFix Technique

Do Son January 18, 2025

North Korea’s notorious Lazarus APT group has been observed employing advanced social engineering tactics in a campaign...

ClickFix: The Rising Threat of Clipboard-Based Social Engineering ChatGPT impersonation used in ClickFix payload delivery

ClickFix: The Rising Threat of Clipboard-Based Social Engineering

Do Son November 19, 2024

In a detailed report, Proofpoint researchers have unveiled the alarming rise of a unique social engineering method...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

ClickFix

Discord Invite System Hijacked: Expired Links Now Lead to Crypto-Stealing Malware

Booking.com Spoofed in ClickFix Malware Surge Targeting Hotels and Travel Sector

Google Uncovers LOSTKEYS Malware Used by Russian COLDRIVER for Cyber Espionage

Interlock Ransomware Uses Evolving Tactics to Evade Detection

Pakistan-Linked APT Exploits Youth Laptop Scheme in Cyberattack Targeting India

ClearFake Malware Variant Exploits Web3 in New Attacks

Booking.com Impersonated in Phishing Campaign Delivering Credential-Stealing Malware

Lazarus Group’s Infostealer Malware Targets Developers in New Espionage Campaigns

Lumma Stealer Malware Now Using ChaCha20 Cipher for Evasion

Lazarus APT Targets Job Seekers with “Contagious Interview” Campaign Using ClickFix Technique