Bleeping Computer

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns. ClickFix attacks ...

Termite ransomware breaches linked to ClickFix CastleRAT attacks

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.
GitHub

OctoPosh: The Octopus Deploy Powershell Module

Octoposh is a Powershell module that provides cmdlets to interact with Octopus Deploy. All the cmdlets included rely on the Octopus .NET client. If you want to request a cmdlet or a feature, or you ...
Microsoft

Contagious Interview: Malware delivered through fake developer job interviews

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...
GitHub

Deprovision an ephemeral environment in Octopus Deploy

A GitHub Action to deprovision ephemeral environments for your Octopus Deploy server. Ephemeral environments in Octopus Deploy allow you to automatically create test environments on-demand to gain ...