URL has been copied successfully!
ClickFix Attack Deploys Potemkin Loader, RMMProject RAT, and EtherRAT Across 11 Hosts
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

ClickFix Attack Deploys Potemkin Loader, RMMProject RAT, and EtherRAT Across 11 Hosts


Tags: , , , , , ,

A sophisticated ClickFix social engineering campaign in May 2026 triggered a full hands-on-keyboard intrusion spanning 11 hosts, deploying a novel trio of malicious tools: Potemkin loader, RMMProject RAT, and EtherRAT. The attack chain began when the user visited a compromised website and pasted a base64-encoded PowerShell command into Win+R. This command abused pcalua.exe as a LOLBIN to […] The post ClickFix Attack Deploys Potemkin Loader, RMMProject RAT, and EtherRAT Across 11 Hosts appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/clickfix-attack-deploys-potemkin-loader/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Rising ClickFix malware distribution trick puts PowerShell IT policies on notice
  2. The 2024 cyberwar playbook: Tricks used by nation-state actors
  3. 11 ways cybercriminals are making phishing more potent than ever
  4. Dust Specter APT Targets Government Officials in Iraq