Show threadDavid1d ago

@campuscodi The "#FileFix" technique has an nonsensical name, but the design decision by #Microsoft which makes it possible is absolutely ridiculous. It at least makes sense to let the user run an executable from in the "Run" dialog; letting the user run an executable from the Location bar makes no sense. What conceivable use case did some engineer have in mind? Or did they just re-use an API without thinking?

They implemented a security defect by design, by violating the Principle of Least Astonishment. Microsoft never ceases to amaze.

https://en.wikipedia.org/wiki/Principle_of_least_astonishment

#humanFactor #POLA

Principle of least astonishment - Wikipedia

The New Oil2d ago

New #FileFix attack weaponizes #Windows #FileExplorer for stealthy commands

https://www.bleepingcomputer.com/news/security/filefix-attack-weaponizes-windows-file-explorer-for-stealthy-powershell-commands/

#cybersecurity #ClickFix

FileFix attack weaponizes Windows File Explorer for stealthy commands

A cybersecurity researcher has developed FileFix, a variant of the ClickFix social engineering attack that tricks users into executing malicious commands via the File Explorer address bar in Windows.

BleepingComputer
CybervVeille.ch3d ago
📱 DĂ©couverte d'une nouvelle technique de phishing : l'attaque FileFix
📝 Dans un article publiĂ© par mr.d0x, une nouvelle mĂ©thode de phishing appelĂ©e **FileFix** est prĂ©sentĂ©e comme une alternative Ă  l'attaque ClickFix...
📖 cyberveille : https://cyberveille.ch/posts/2025-06-24-decouverte-d-une-nouvelle-technique-de-phishing-l-attaque-filefix/
🌐 source : https://mrd0x.com/filefix-clickfix-alternative/
#FileFix #TTP #Cyberveille
DĂ©couverte d'une nouvelle technique de phishing : l'attaque FileFix

Dans un article publiĂ© par mr.d0x, une nouvelle mĂ©thode de phishing appelĂ©e FileFix est prĂ©sentĂ©e comme une alternative Ă  l’attaque ClickFix. Cette technique exploite la fonctionnalitĂ© de tĂ©lĂ©chargement de fichiers des navigateurs pour exĂ©cuter des commandes systĂšme sans quitter le navigateur. La mĂ©thode FileFix utilise la barre d’adresse de l’explorateur de fichiers pour exĂ©cuter des commandes OS. Le processus implique de tromper l’utilisateur en lui faisant croire qu’un fichier lui a Ă©tĂ© partagĂ© et en l’incitant Ă  coller une commande malveillante dans la barre d’adresse de l’explorateur de fichiers.

CyberVeille