MOVEit Transfer Faces Increased Threats as Scanning Surges and CVE Flaws Are Targeted

OneClik Malware Targets Energy Sector Using Microsoft ClickOnce and Golang Backdoors

Critical Open VSX Registry Flaw Exposes Millions of Developers to Supply Chain Attacks

Critical RCE Flaws in Cisco ISE and ISE-PIC Allow Unauthenticated Attackers to Gain Root Access

New FileFix Method Emerges as a Threat Following 517% Rise in ClickFix Attacks

Cybersecurity researchers have detailed a new campaign dubbed OneClik that leverages Microsoft's ClickOnce software deployment technology and bespoke Golang backdoors to compromise organizations within the energy, oil, and gas sectors.
"The campaign exhibits characteristics aligned with Chinese-affiliated threat actors, though attribution remains cautious," Trellix researchers Nico Paulo

Headline

OneClik Malware Targets Energy Sector Using Microsoft ClickOnce and Golang Backdoors

The Hacker News: Latest News