Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
SecurityWeek

RATs in the Machine: Inside a Pakistan-Linked Three-Pronged Cyber Assault on India

India is being targeted by multiple espionage campaigns delivered by the Pakistan-attributed Transparent Tribe (aka APT36).
The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
eLife

Language comprehension functionally modulates first-order relay thalamic nuclei

This study presents a potentially valuable exploration of the role of thalamic nuclei in language processing. The results will be of interest to researchers interested in the neurobiology of language.
The Hacker News

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.

Baron Discovery Fund Q4 2025: Winners, Laggards, Buys & Sells

Baron Discovery Fund reports Q4 2025 performance and highlights key holdings like Exact Sciences and JFrog. Read the full investor letter for market insights.
The Lancet

Smartwatch-derived versus self-reported outcomes of physiological recovery after COVID-19, influenza, and group A streptococcus: a 2-year prospective cohort study

Public health recommendations suggest individuals can resume normal activities 5 days after symptom cessation. However, our study finds that full recovery can take longer, indicating that delayed ...