• About Us
  • Privacy Policy
  • Disclaimer
  • Contact Us
TechTrendFeed
  • Home
  • Tech News
  • Cybersecurity
  • Software
  • Gaming
  • Machine Learning
  • Smart Home & IoT
No Result
View All Result
  • Home
  • Tech News
  • Cybersecurity
  • Software
  • Gaming
  • Machine Learning
  • Smart Home & IoT
No Result
View All Result
TechTrendFeed
No Result
View All Result

Microsoft Warns of ClickFix Assault Abusing DNS Lookups

Admin by Admin
February 16, 2026
Home Cybersecurity
Share on FacebookShare on Twitter


Microsoft has warned customers that risk actors are leveraging a brand new variant of the ClickFix method to ship malware.

The ClickFix assault technique has been more and more used up to now 12 months by each cybercriminals and state-sponsored risk teams.

The assault includes attackers displaying a pretend error message on a compromised or malicious web site. The message instructs the goal to handle the problem by urgent particular keys, then performing further steps (eg, operating a command). By following the attacker’s directions, the consumer unknowingly grants elevated permissions, downloads malware, or executes attacker-supplied scripts.

In a latest ClickFix assault noticed by Microsoft the attacker requested targets to run a command that executes a customized DNS lookoup.

“The preliminary command runs by cmd.exe and performs a DNS lookup towards a hard-coded exterior DNS server, somewhat than the system’s default resolver. The output is filtered to extract the ‘Title:’ DNS response, which is executed because the second-stage payload,” Microsoft defined.

This tactic allows the attacker to achieve their infrastructure and validate execution of the second-stage payload, rising their probabilities of evading detection by mixing malicious site visitors into common community site visitors. 

The second-stage payload downloads and executes a malicious Python script designed for reconnaissance. The ultimate payload is then dropped and a persistence mechanism is deployed.

Commercial. Scroll to proceed studying.

The ultimate payload is a distant entry trojan named ModeloRAT, which allows attackers to gather details about the compromised system and execute different payloads.

Whereas Microsoft has not shared any info on the assaults, Huntress reported just lately {that a} risk actor tracked as KongTuke had been deploying ModeloRAT by a ClickFix variant dubbed CrashFix. The marketing campaign was geared toward company environments. 

Associated: Over 300 Malicious Chrome Extensions Caught Leaking or Stealing Person Knowledge

Associated: RATs within the Machine: Inside a Pakistan-Linked Three-Pronged Cyber Assault on India

Associated: New ‘ZeroDayRAT’ Adware Equipment Allows Whole Compromise of iOS, Android Gadgets

Tags: abusingAttackClickfixDNSLookupsMicrosoftwarns
Admin

Admin

Next Post
Poor documentation dangers an AI nightmare for builders

Poor documentation dangers an AI nightmare for builders

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Trending.

Ideas on Streaming Companies: 2024 Version

Ideas on Streaming Companies: 2024 Version

June 16, 2025
From exterior espionage to home concentrating on

From exterior espionage to home concentrating on

June 14, 2026
Enterprise-grade pure language to SQL era utilizing LLMs: Balancing accuracy, latency, and scale

Enterprise-grade pure language to SQL era utilizing LLMs: Balancing accuracy, latency, and scale

April 27, 2025
High 15 Web3 Improvement Corporations in Dubai: 2026 Information

High 15 Web3 Improvement Corporations in Dubai: 2026 Information

December 3, 2025
Drive Enterprise Progress with Skilled Odoo ERP Consulting

Drive Enterprise Progress with Skilled Odoo ERP Consulting

May 3, 2025

TechTrendFeed

Welcome to TechTrendFeed, your go-to source for the latest news and insights from the world of technology. Our mission is to bring you the most relevant and up-to-date information on everything tech-related, from machine learning and artificial intelligence to cybersecurity, gaming, and the exciting world of smart home technology and IoT.

Categories

  • Cybersecurity
  • Gaming
  • Machine Learning
  • Smart Home & IoT
  • Software
  • Tech News

Recent News

Amazon drops an outrageously whole lot on 4K UHD Blu-rays, and just about giving them away proper now

Amazon drops an outrageously whole lot on 4K UHD Blu-rays, and just about giving them away proper now

July 11, 2026
OpenAI {Hardware} Biz Constructed with Apple Secrets and techniques, Apple Says

OpenAI {Hardware} Biz Constructed with Apple Secrets and techniques, Apple Says

July 11, 2026
  • About Us
  • Privacy Policy
  • Disclaimer
  • Contact Us

© 2025 https://techtrendfeed.com/ - All Rights Reserved

No Result
View All Result
  • Home
  • Tech News
  • Cybersecurity
  • Software
  • Gaming
  • Machine Learning
  • Smart Home & IoT

© 2025 https://techtrendfeed.com/ - All Rights Reserved