A new wave of ClickFix infections has been discovered, exploiting social engineering to deliver a custom malware loader known as Potemkin. In a recent intrusion in May 2026 spanning 11 network hosts, threat actors bypassed modern security controls to deploy the RMMProject remote access trojan (RAT) and a blockchain-enabled backdoor called EtherRAT. The attack begins […]
The post Hackers Use Potemkin Loader to Deliver RMMProject RAT in ClickFix Intrusion appeared first on Cyber Security News.