Robuta

Jamf Threat Labs discovers MacSync Stealer's evolution to code-signed, notarized Swift applications that silently download and execute payloads, bypassing...

Nov 10, 2025 - Объясняем, что такое FileFix — новая вариация атаки ClickFix с социальной инженерией....

Stealth malware MintsLoader delivers GhostWeaver RAT + Evades sandboxes using DGA + Powers data theft via encrypted C2

May 16, 2025 - The Interlock ransomware group is using the ClickFix technique to compromise corporate infrastructure. We explain how the attack works.

Nov 28, 2025 - Cybercriminals are shifting to hiding malware in PNG images using steganography, bypassing Microsoft's recent block on SVG files in Outlook.

Jul 3, 2025 - Less understood than phishing, the social engineering technique that tricks users into pasting malicious commands into tools like PowerShell or the Windows Run...

ClickFix attacks have evolved to feature videos that guide victims through the self-infection process, a timer to pressure targets into taking risky actions,...

Technical analysis of a ClickFix campaign delivering Cuckoo Stealer through fake Homebrew typosquat domains. Includes infrastructure pivots, HuntSQL queries,...

Nov 6, 2025 - Breaking down the most sophisticated ClickFix page we’ve seen in the wild — and what it tells us about the future of malicious copy-and-paste attacks.

Nov 11, 2025 - Relatively new technique can bypass many endpoint protections.

Dec 17, 2025 - NCC’s monthly threat report details the growing prevalence of ClickFix attacks in the wild.

Nov 28, 2025 - A convincing (but fake) "Windows Update" screen can be the perfect lure for tricking users into infecting their computers with malware.

Nov 25, 2025 - The latest campaign also hides malware in RGB pixel values of PNG images.

Nov 26, 2025 - Security-Forscher warnen vor neuen ClickFix-Angriffen, die über gefälschte Windows-Update-Seiten laufen.

A new malware campaign tricks macOS users with fake Spectrum CAPTCHA sites to steal passwords and deliver Atomic Stealer malware.

Nov 10, 2025 - Объясняем, что такое FileFix — новая вариация атаки ClickFix с социальной инженерией....

Researchers uncovered a CrashFix campaign where a fake Chrome ad blocker crashes browsers to trick users into installing the ModeloRAT malware.

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.

Nov 25, 2025 -    Una campaña reciente de ClickFix ha incorporado la esteganografía y usado como señuelo una...

May 24, 2025 - ClickFix-Malware über TikTok: Mit viralen TikTok-Videos als Trojanischem Pferd starten Cyberkriminelle neue Angriffswellen.

Elastic Security Labs uncovered a ClickFix campaign using compromised legitimate sites to deliver a five-stage chain ending in MIMICRAT, a custom native C RAT...

Block attacks that trick users into running malicious code.

May 16, 2025 - The Interlock ransomware group is using the ClickFix technique to compromise corporate infrastructure. We explain how the attack works.

May 16, 2025 - The Interlock ransomware group is using the ClickFix technique to compromise corporate infrastructure. We explain how the attack works.

Nov 25, 2025 - Onderzoekers ontdekten ClickFix-aanvallen waarbij criminelen een nagemaakt Windows Update-scherm gebruiken om malware te installeren.

ClickFix attacks are being increasingly adopted by threat actors of all levels, with researchers now seeing multiple advanced persistent threat (APT) groups...

Nov 25, 2025 - Der Mimecast-Report 2025 zeigt einen Anstieg von Cyberangriffen auf Menschen über E-Mail, Chats und Telefon. Phishing, ClickFix und BEC sind die häufigsten...

Nov 25, 2025 - Researchers discovered ClickFix attacks in which criminals use a fake Windows Update screen to install malware.

Dec 11, 2025 - The attack tricks employees into creating a URL that lets hackers grab their Microsoft login tokens.

Feb 11, 2026 - The campaign used a compromised Telegram account, a fake Zoom meeting, and AI-assisted deception to trick victims into executing terminal commands leading to a...

Aug 21, 2025 - CloudSEK researchers have uncovered a sophisticated campaign leveraging typo-squatted “Spectrum” domains to spread a new Atomic macOS Stealer (AMOS) variant....

Feb 19, 2026 - The ClickFix social engineering technique has become the second most common attack vector, behind only phishing, according to ESET research

Feb 12, 2026 - Executive Summary Intego Antivirus Labs is tracking an evolution of the “ClickFix” social engineering campaign targeting macOS users. Dubbed Matryoshka Intego...

Nov 25, 2025 - The bad actors use the fake Windows Update image to convince victims to unknowingly install the info-stealing malware.

Nov 24, 2025 - : Poisoned PNGs contain malicious code

Nov 14, 2025 - Nový typ kybernetického podvodu dokáže překonat obvyklou ochranu a naletí mu i ostražitější uživatelé.

ClickFix Campaign Abuses Compromised Sites to Deploy MIMICRAT RAT | Read more hacking news on The Hacker News cybersecurity news website and learn how to...

We traced a deceptive hiring assessment scam back to Lazarus, and here’s how they use psychology and obfuscation to bypass defenses

A new campaign employing ClickFix attacks has been spotted targeting both Windows and Linux systems using instructions that make infections on either operating...

Nov 29, 2025 - นักวิจัยจากบริษัทความปลอดภัยไซเบอร์ Huntress...

Feb 12, 2026 - This analysis examines an attack chain targeting Windows systems through social engineering using fake CAPTCHA to trick users into executing PowerShell...

Mar 27, 2025

Nov 25, 2025 - ClickFix just got more convincing, hiding malware in PNG images and faking Windows updates to make users run dangerous commands.

Cybercriminals are using TikTok videos to trick users into infecting themselves with Vidar and StealC information-stealing malware in ClickFix attacks.