Fake CAPTCHA Scam Tricks Windows Users Into Installing Malware

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
MUO on MSN

I run this one PowerShell script on every Windows install, and it changes everything

It's free and open-source.

New tool blocks imposter attacks disguised as safe commands

A new open-source and cross-platform tool called Tirith can detect homoglyph attacks over command-line environments by ...
XDA Developers on MSN

4 PowerShell scripts I run on every Windows install

Get your fresh install settled quickly with these 4 PowerShell scripts ...
GitHub

Thycotic.SecretServer PowerShell Module

This module provides a secure method that Secret Server Administrators and Users can use for managing and automating their environment. Scripts and automated processing that requires a privileged (or ...
GitHub

Execute PowerShell scripts or commands silently with no console window

QuietShell is a command-line application for headless PowerShell execution supporting both in-process runspaces and out-of-process execution models. QuietShell eliminates console window visibility ...