New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

‘Witch hunt’: Attorney for woman accused of holding her stepson captive in Waterbury for decades claims her innocence

Sullivan’s attorney, Ioannis Kaloidis, held a press briefing Tuesday at 1 p.m. Watch the full video in the player above.
Krebs on Security

Kimwolf Botnet Swamps Anonymity Network I2P

Kimwolf is a botnet that surfaced in late 2025 and quickly infected millions of systems, turning poorly secured IoT devices like TV streaming boxes, digital picture frames and routers into relays for ...