Microsoft, Huntress, and Intego this month detailed attacks that show the ongoing evolution of the highly popular compromise technique.

Use the vitals package with ellmer to evaluate and compare the accuracy of LLMs, including writing evals to test local models.

ClickFix campaigns have adapted to the latest defenses with a new technique to trick users into infecting their own machines with malware.

Microsoft researchers found a ClickFix campaign that uses the nslookup tool to have users infect their own system with a Remote Access Trojan.

Microsoft has warned users that threat actors are leveraging a new variant of the ClickFix technique to deliver malware.

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.