The Hacker News

Fake Booking Emails Redirect Hotel Staff to Fake BSoD Pages Delivering DCRat

A new PHALT#BLYX campaign targets European hotels using fake Booking.com emails, ClickFix lures, PowerShell, and MSBuild to ...

This WebUI vulnerability allows remote code execution - here's how to stay safe

Open WebUI, an open-source, self-hosted web interface for interacting with local or remote AI language models, carried a high ...
Dark Reading

ClickFix Campaign Serves Up Fake Blue Screen of Death

Threat actors are using the social engineering technique to deploy the DCRat remote access Trojan against targets in the ...
InfoWorld

Open WebUI bug turns the ‘free model’ into an enterprise backdoor

The bug allows attacker-controlled model servers to inject code, steal session tokens, and, in some cases, escalate to remote ...
Infosecurity Magazine

Hospitality Sector Hit By PHALT#BLYX ClickFix Malware Campaign

Multi-stage malware campaign targets hospitality organizations using social engineering and abuse of MSBuild.exe ...

Hackers use 'Blue Screen of Death' malware to target victims

This script downloads the malware and other malicious tools, disables Windows Defender, and displays the real booking website ...