Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
ZDNet

Move over, Claude: Moonshot's new AI model lets you vibe-code from a single video upload

Moonshot debuted its open-source Kimi K2.5 model on Tuesday. It can generate web interfaces based solely on images or video. It also comes with an "agent swarm" beta feature. Alibaba-backed Chinese AI ...

Claude LLM artifacts abused to push Mac infostealers in ClickFix attack

Threat actors are abusing Claude artifacts and Google Ads in ClickFix campaigns that deliver infostealer malware to macOS users searching for specific queries.