New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
The Hacker News

SmartLoader Attack Uses Trojanized Oura MCP Server to Deploy StealC Infostealer

SmartLoader campaign spreading StealC via a trojanized Oura MCP server using fake GitHub forks to steal credentials and ...
pharmaphorum

BioMarin gets first access deal in EU for gene therapy Roctavian

BioMarin's has signed the first contract with an insurer in Germany for Roctavian, its recently approved gene therapy for haemophilia A, as it tests out its outcomes-based agreement (OBA) ...