Security Boulevard

ClickFix added nslookup commands to its arsenal for downloading RATs

Microsoft researchers found a ClickFix campaign that uses the nslookup tool to have users infect their own system with a Remote Access Trojan.
GitHub

Simple, commands based scripting language for SCP: Secret Laboratory.

This plugin was created using official Northwood Lab API. No additional dependencies need to be installed in order to run it. This project was developed as part of the educational process at PJAIT.
XDA Developers on MSN

I love Proxmox community scripts, but a single command executes 8 remote scripts as root

Do you know what your Proxmox server is actually running?
How-To Geek on MSN

How I execute terminal commands on my Linux PC from my Android home screen

Turn your Android phone into a powerful control panel for your Linux PC.

New tool blocks imposter attacks disguised as safe commands

A new open-source and cross-platform tool called Tirith can detect homoglyph attacks over command-line environments by ...
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
The Hacker News

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.

Fake ad blocker breaks PCs in new malware extension scam

Chrome and Edge users warned about NexShield browser extension scam that causes crashes and tricks users into installing ...