New ClickFix Attack Exploits DNS Requests to Deliver Malicious Payloads via nslookup

A new variant of the ClickFix attack exploits DNS queries to distribute malicious payloads via nslookup. Malicious actors use this channel to retrieve a PowerShell payload hidden in DNS responses, marking the first documented use of this vector in this type of campaign. The attack relies on social engineering techniques to induce victims to execute malicious commands. No details on the targets, geographical scope, or precise timeline are provided. The impact includes remote execution of arbitrary code and bypassing traditional detection mechanisms. Source: https://www.bleepingcomputer.com/news/security/new-clickfix-attack-abuses-nslookup-to-retrieve-powershell-payload-via-dns/