New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS
Bleeping Computer
by Lawrence AbramsFebruary 16, 2026
Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
Verticals
securitytech
Originally published on Bleeping Computer on 2/16/2026