The Hacker News

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.
Windows Report

Windows 11 Updates KB5077178, KB5077180, KB5077374 Deliver WinRE and Secure Boot Changes

Microsoft releases KB5077178, KB5077180, and KB5077374 with WinRE upgrades, Secure Boot updates, and Dynamic Setup improvements.
The Hacker News

APT28 Targeted European Entities Using Webhook-Based Macro Malware

APT28’s Operation MacroMaze used macro-laced documents and webhook.site to exfiltrate data across Europe from Sept 2025 to Jan 2026.

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
GitHub

LUSAS API (LPI) Examples

Browse each directory to read more about each interaction method. Beginners are recommended to start with jupyter_notebook since its interactive nature allows for step-by-step code execution, ...
IEEE

Malicious VBScript detection algorithm based on data-mining techniques

Abstract: Malware attacks are amongst the most common security threats. Not only malware incidents are rapidly increasing, but also the attack methodologies are getting more complicated. Moreover ...
Technobezz on MSN

Google reports state hackers from four nations exploited its Gemini AI

State hackers from four nations exploited Google's Gemini AI for cyberattacks, automating tasks from phishing to malware development..
GitHub

Rust VBScript lexer and parser

On October 2023 Microsoft deprecated VBScript. A timeline is available at the Windows IT Pro Blog. However, there are still many legacy systems that use VBScript. This project aims to provide a lexer, ...