Malware5 min read
ClickFix Attacks Now Abuse DNS to Evade Security Tools
Microsoft warns of ClickFix variant using nslookup commands to stage malware via DNS traffic. Delivers ModeloRAT through fileless attack chain.
James RiveraFeb 19, 2026
Modelorat
3 articles tagged with "Modelorat"
Malware3 min read
CrashFix Malware Crashes Browsers to Trick Enterprise Users
Microsoft warns of ClickFix variant that deliberately crashes Chrome, then social-engineers victims into running PowerShell. Only domain-joined hosts targeted.
James RiveraFeb 15, 2026
Malware4 min read
Fake Ad Blocker Crashes Browsers to Deploy Enterprise Backdoor
The NexShield Chrome extension impersonated uBlock Origin's developer and used ClickFix techniques to deliver ModeloRAT malware to corporate networks.
James RiveraJan 21, 2026