New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
SecurityWeek

Microsoft Warns of ClickFix Attack Abusing DNS Lookups

Microsoft has warned users that threat actors are leveraging a new variant of the ClickFix technique to deliver malware.
Threat Post

Wekby APT Gang Using DNS Tunneling for Command and Control

Wekby attackers are turning to the technique known as DNS tunneling in lieu of more conventional HTTP delivery of command and controls for remote access control of infected computer networks. Palo ...
CSOonline

Malware Increasingly Uses DNS As Command and Control Channel to Avoid Detection, Experts Say

Most companies are unprepared to deal with the use of DNS as command and control channel for malware, experts said at the RSA Conference The number of malware threats that receive instructions from ...
Dark Reading

ClickFix Attacks Abuses DNS Lookup Command to Deliver ModeloRAT

ClickFix campaigns have adapted to the latest defenses with a new technique to trick users into infecting their own machines with malware.