New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
The Hacker News

CRESCENTHARVEST Campaign Targets Iran Protest Supporters With RAT Malware

CRESCENTHARVEST uses protest lures and malicious LNK files to deploy RAT malware targeting Iran protest supporters for ...
Computing

Employee monitoring tools exploited to access corporate networks

A ransomware group has been using legitimate employee monitoring and remote support software to infiltrate corporate systems, according to new research.
CNET

Microsoft Phone Link: Everything You Need to Know (and Why You Might Skip It)

If you ever wished you could access your iPhone or Android device directly on a Windows PC, Phone Link lets you do that. But it's not for everyone.

Here is how Microsoft is improving PowerShell and Windows OpenSSH in 2026Here is how Microsoft is improving PowerShell and Windows OpenSSH in 2026Here is how Microsoft is ...

Microsoft is gearing up for big PowerShell and Windows OpenSSH changes in 2026, but security will come before flashy new features.
PCMag on MSN

3 Silicon Valley Engineers Arrested, Allegedly Sent Trade Secrets to Iran

The US alleges that the trio transferred confidential documents related to processor security, cryptography, and other technologies to a platform outside the US.