> TritonInfoSec News
Home / Mar 08, 2026 / Story
0
#3 BleepingComputer general March 07, 2026 at 16:14 UTC

Termite ransomware breaches linked to ClickFix CastleRAT attacks

By Bill Toulas

AI Summary

Velvet Tempest ransomware operators are using ClickFix social engineering techniques combined with legitimate Windows utilities to deploy DonutLoader malware and CastleRAT backdoor in Termite ransomware attacks. This campaign demonstrates the evolution of ransomware delivery methods through deceptive user interaction.

Read full article → https://www.bleepingcomputer.com/news/security/ter…

Relevance score: 85.0/100

# More from March 08

  1. 1
    Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI Model The Hacker News
  2. 2
    OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity Issues The Hacker News
  3. 4
    US Cyber Strategy Targets Adversaries, Critical Infrastructure, and Emerging Technologies SecurityWeek
  4. 5
    Microsoft: Hackers abusing AI at every stage of cyberattacks BleepingComputer
  5. 6
    Over 100 GitHub Repositories Distributing BoryptGrab Stealer SecurityWeek
  6. 7
    Fake Claude Code install guides push infostealers in InstallFix attacks BleepingComputer
  7. 8
    Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT The Hacker News
  8. 9
    CISA adds 3 iOS flaws to its catalog of known exploited vulnerabilities Ars Technica Security
  9. 10
    North Korean APTs Use AI to Enhance IT Worker Scams Dark Reading