@malwaretech.com on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

Marcus Hutchins

malwaretech.com

did:plc:idwhjzs5boatwv4zxwwcjk5i

We encountered a unique variant of the ClickFix malware technique. The catch? The user is social engineered into running a PowerShell script which downloads no files, makes no web requests, and embeds no payload. Regardless, it's still able to install a malicious loader. https://expel.com/blog/cache-smuggling-when-a-picture-isnt-a-thousand-words/

2025-10-08T16:38:16.561Z