SecurityWeek

ClickFix Attack Uses Windows Terminal to Evade Detection

A new ClickFix attack variant uses fake CAPTCHA pages instructing victims to paste and execute malicious commands in Windows Terminal.

Microsoft: Hackers abuse OAuth error flows to spread malware

Hackers are abusing the legitimate OAuth redirection mechanism to bypass phishing protections in email and browsers to take ...
Cybernews

AI-driven hacking uses booking.com and Microsoft Teams in vibe coding and “flat pack ...

AI is helping cybercriminals to rapidly assemble malware with flat-pack efficiency. It’s almost like buying a sofa from Ikea, ...
PCQuest on MSN

Copy-paste this command and you’re hacked: New Windows Terminal attack spreads Lumma Stealer

A recent malware campaign is using a trusted Windows application to launch attacks for stealing credentials via social engineering with the exploitation of the Windows Terminal with the use of Lumma ...
The Hacker News

APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

Researchers link Silver Dragon APT to APT41 after attacks on government entities using Cobalt Strike, DNS tunneling, and ...
TechJuice

China Associated APT41 Hackers Deploy Silver Dragon Malware Operation

China linked APT41 hackers deploy Silver Dragon campaign targeting organizations with malware and espionage tactics.
The Hacker News

Transparent Tribe Uses AI to Mass-Produce Malware Implants in Campaign Targeting India

Transparent Tribe uses AI tools to mass-produce polyglot malware targeting India using Slack, Discord, and Google Sheets C2.

Five Cyber Groups To Watch as Geo Political Tensions Rise: Research

Cybersecurity researchers identify five active threat groups using phishing, malware and influence tactics as cyber activity ...
GovInfoSecurity

Breach Roundup: Patches and Hacks on Cisco Equipment

This week, Cisco patches and hacks. Trojanized app targeted Israelis. Bye-bye, Tycoon 2FA. Also bye-bye LeakBase. A ...