PowerShell – 1010.cx

New ClickFix Attack Uses Fake Browser Fix to Install DarkGate Malware

Researchers at Point Wild have discovered a new ClickFix attack campaign that tricks users into manually installing DarkGate malware via fake browser extension alerts. Learn how this attack bypasses security by using the Windows Run box and how you can…

·

ClickFix, Cyber Attack, cybersecurity, DarkGate, Fraud, Lat61, Malware, Point Wild, PowerShell, Security

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
MastaStealer Exploits Windows LNK to Launch PowerShell and Bypass Defender

Windows LNK files remain a preferred vector for attackers seeking to establish initial access on target systems. Recently, security researchers identified a sophisticated MastaStealer campaign that exploits these shortcut files to deliver a full-featur…

·

cyber security, Cyber Security News, PowerShell, Windows

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Snake Keylogger Uses Weaponized Emails and PowerShell to Steal Sensitive Data

A newly observed information‐stealing campaign is deploying a stealthy variant of the SnakeKeylogger malware via weaponized e-mails that masquerade as legitimate remittance advice from CPA Global and Clarivate. Researchers first identified the infectio…

·

cyber security, Cyber Security News, Email, PowerShell, Snake Keylogger

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Patchwork APT: Leveraging PowerShell to Create Scheduled Tasks and Deploy Final Payload

Patchwork, the advanced persistent threat (APT) actor also known as Dropping Elephant, Monsoon, and Hangover Group, has been observed deploying a new PowerShell-based loader that abuses Windows Scheduled Tasks to execute its final payload. Active since…

·

APT, cyber security, Cyber Security News, PowerShell

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
COLDRIVER APT Group Uses ClickFix to Deliver New PowerShell-Based Backdoor BAITSWITCH

Russia-linked threat actors continue targeting civil society with sophisticated social engineering campaigns and lightweight malware tools in September 2025. The campaign delivers two previously undocumented malware families: a downloader dubbed BAITSW…

·

APT, APT group, cyber security, Cyber Security News, PowerShell

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Yurei Ransomware Uses PowerShell to Deploy ChaCha20 File Encryption

A newly discovered ransomware group called Yurei has emerged with sophisticated encryption capabilities, targeting organizations through double-extortion tactics while leveraging open-source code to rapidly scale operations. First observed on September…

·

cyber security, Cyber Security News, PowerShell, Ransomware

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
NoisyBear Exploits ZIP Files for PowerShell Loaders and Data Exfiltration

The threat actor known as NoisyBear has launched a sophisticated cyber-espionage effort called Operation BarrelFire, using specially designed phishing lures that imitate internal correspondence to target Kazakhstan’s energy sector, particularly w…

·

cyber security, Cyber Security News, PowerShell

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Microsoft Teams Abused in Cyberattack Delivering PowerShell-Based Remote Access Malware

In a concerning development for enterprise security, cybercriminals have begun exploiting Microsoft Teams—long trusted as an internal messaging and collaboration tool—to deliver PowerShell-based malware and gain unauthorized remote access to Windows sy…

·

Cyber Attack, cyber security, Cyber Security News, Malware, Microsoft, Microsoft Teams, PowerShell

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

Category: PowerShell