New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

Anthropic’s Claude Cowork finally lands on Windows — and it wants to automate your workday

Anthropic has launched Claude Cowork for Windows, bringing its AI agent’s file access and task automation to most desktop users as Microsoft deepens its partnership with Anthropic while reassessing ...
IEEE

Deployment of an Aerial Multiagent System for Automated Task Execution in Large-Scale Underground Mining Environments

Abstract: In this article, we present a framework for deploying aerial multiagent systems in large-scale subterranean environments with minimal supporting infrastructure. The objective is to optimally ...
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
The Hacker News

ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services

Cybersecurity researchers have disclosed details of a new campaign that combines ClickFix-style fake CAPTCHAs with a signed Microsoft Application Virtualization (App-V) script to distribute an ...
The Hacker News

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Cybersecurity researchers have discovered a JScript-based command-and-control (C2) framework called PeckBirdy that has been put to use by China-aligned APT actors since 2023 to target multiple ...
IEEE

Automated Exam Script Checking using Zero-Shot LLM and Adaptive Generative AI

Abstract: The manual grading of exam scripts is a labor-intensive process, often plagued by subjectivity and inconsistency. This study presents an innovative approach to automating the evaluation of ...