News

Interlock ransomware gang pushes fake IT tools in ClickFix attacks
The Interlock ransomware gang now uses ClickFix attacks that impersonate IT tools to breach corporate networks and deploy ...
State-sponsored actors spotted using ClickFix hacking tool developed by criminals
The ClickFix attack technique has gotten so popular that even state-sponsored threat actors are using it, research from ...
The Hacker News1d
State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns
ClickFix malware tactic used by Iran, Russia, and North Korea from Nov 2024–Feb 2025 replaces payload delivery in major ...
The Hacker News1d
Node.js Malware Campaign Targets Crypto Users with Fake Binance and TradingView Installers
Malicious crypto installers using Node.js since Oct 2024 evade Microsoft Defender via PowerShell and DLLs, enabling stealthy ...
Microsoft2d
Threat actors misuse Node.js to deliver malware and other malicious payloads
Microsoft Defender Experts has observed and helped multiple customers address campaigns leveraging Node.js to deliver malware ...
SecurityWeek2d
Microsoft Warns of Node.js Abuse for Malware Delivery
The open source cross-platform runtime environment Node.js is popular among developers, allowing them to execute JavaScript ...
Hackers find a way around built-in Windows protections
If not properly managed, Windows Defender Application Control, a security feature with Windows, could be a potential security ...