Tag: endpoint detection

Clipboard Trap: ClickFix Now Abuses Windows Terminal to Deliver Lumma Stealer

Admin Tools, Automation, Hacking, Microsoft, Security Leave a comment
Clipboard Trap: ClickFix Now Abuses Windows Terminal to Deliver Lumma Stealer

A newly observed wave of ClickFix social-engineering attacks has shifted tactics, hijacking Windows Terminal as its execution environment to deliver credential-stealing malware. Security researchers from Microsoft and other vendors tracked this campaign in early 2026 and reported a reliable pattern: victims are manipulated into pasting an obfuscated command from their clipboard into a legitimate-looking terminal window, which then decodes and

Continue

SYSTEM at Risk: How a Splunk DLL Search-Order Flaw Lets Local Users Escalate Privileges

Admin Tools, Hacking, Microsoft, Security Leave a comment
SYSTEM at Risk: How a Splunk DLL Search-Order Flaw Lets Local Users Escalate Privileges

Splunk is a cornerstone of many security and operations teams, trusted to ingest, index, and analyze machine data across the enterprise. That trust makes any vulnerability in Splunk especially consequential. In February 2026 Splunk disclosed a high-severity Windows-specific vulnerability (CVE-2026-20140) that allows a low-privileged local user to perform a DLL search-order hijacking attack and gain SYSTEM-level privileges. The mechanics are

Continue