ClickFix attack uses fake Windows BSOD screens to push malware

A new ClickFix social engineering campaign is targeting the hospitality sector in Europe, using fake Windows Blue Screen of ...

欧洲酒店业遭新型攻击,伪造 Windows 蓝屏偷控电脑

据香港IDC新天域互联了解,近日,欧洲酒店业成为新型ClickFix社会工程学攻击的目标,攻击者借助伪造的Windows蓝屏死机(BSOD)界面,诱骗用户手动编译并执行恶意软件。该攻击活动于去年12月首次被发现,安全研究机构Securonix将其追踪编号定为“PHALT#BLYX”,攻击载体为仿冒缤客的钓鱼邮件。
Security Boulevard

Malware Campaign Abuses Booking.com Against Hospitality Sector

Securonix is detailing a multi-stage campaign that starts with a bogus Booking.com message that runs through a ClickFix technique and a fake Blue Screen of Death before dropping the DCRat malware that ...

Securonix warns of malware campaign targeting hospitality sector

A new report out today from cybersecurity company Securonix Inc. is warning of an ongoing malware campaign targeting the ...
The Hacker News

Russia-Aligned Hackers Abuse Viber to Target Ukrainian Military and Government

Russia-aligned UAC-0184 abuses Viber messages to deliver Hijack Loader and Remcos RAT in espionage attacks on Ukrainian ...

伪装成税务文件的“银狐”:中国背景APT组织首次用印度所得税诱饵 ...

一、一封“税务通知”邮件,打开后系统已沦陷 2025年12月中旬,印度德里一家中型制造企业的财务主管Priya Mehta收到了一封看似来自“印度所得税局(Income Tax Department)”的邮件。主题写着:“关于您公司2024-25财年税务申报的紧急通知”,附件是一个名为“tax_affairs.pdf.exe”的文件。 出于职业敏感,她点了进去——结果,这台连接公司内网的Windo ...
The Hacker News

Transparent Tribe Launches New RAT Attacks Against Indian Government and Academia

Transparent Tribe (APT36) is linked to new cyber-espionage attacks using malicious LNK files, adaptive RATs, and long-term ...
腾讯网

只需3步,教你部署自己的AI手机 | 保姆级教程

大家好,我是已经摆烂了好几天的冷逸。今天上号了,给大家带来一篇 AI手机 的部署教程,手把手教学,教不会退网。最近我开始琢磨 ROI 的事情,不知道是在哪个地方看到了这样一句话:提高自己高 ROI 的付出,减少自己低 ROI 的内耗。ROI ...
Security Boulevard

Top CVEs of December 2025

December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...