× EU ICT Risk Newsroom DORA News On the Horizon ΑΙ Cybersec Space Cyber Alerts GDPR News EU CERT Advisories ICT Governance ESA/NCAs Contact

ClickFix attack abuses nslookup and DNS for PowerShell payload delivery

Newsroom - 16 February 2026 - 02:29

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

ClickFix attack abuses nslookup and DNS for PowerShell payload delivery

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

ClickFix DNS Malware Social Engineering

ClickFix attack abuses nslookup and DNS for PowerShell payload delivery

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

Subscribe for EU DORA and Banking ICT Risk news and insights