The Hacker News

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.
Dark Reading

ClickFix Attacks Abuses DNS Lookup Command to Deliver ModeloRAT

ClickFix campaigns have adapted to the latest defenses with a new technique to trick users into infecting their own machines with malware.
Network World

Malware increasingly uses DNS as command and control channel to avoid detection, experts say

Identical queries that get repeated every few minutes can also be an indication of DNS command and control activity, because infected computers will periodically check for new commands. There are ...
Threat Post

New Fileless Attack Using DNS Queries to Carry Out PowerShell Commands

A unique attack called DNSMessenger uses DNS queries to carry out malicious PowerShell commands on compromised computers. A unique attack called DNSMessenger uses DNS queries to carry out malicious ...
Threat Post

Wekby APT Gang Using DNS Tunneling for Command and Control

Wekby attackers are turning to the technique known as DNS tunneling in lieu of more conventional HTTP delivery of command and controls for remote access control of infected computer networks. Palo ...
Bleeping Computer

New Mozart Malware Gets Commands, Hides Traffic Using DNS

A new backdoor malware called Mozart is using the DNS protocol to communicate with remote attackers to evade detection by security software and intrusion detection systems. Typically when a malware ...