Security25 views

New Malware Campaign Uses Fake Windows Blue Screen to Spread DCRat

Cybersecurity researchers at Securonix have identified a new malicious campaign, dubbed PHALT#BLYX, that uses a fake "Blue Screen of Death" (BSOD) to trick users into installing malware.

How the Attack Works

  1. Phishing Email: The attack starts with a fake email disguised as a Booking.com notification regarding a reservation cancellation and a high pending charge.
  2. The Fake BSOD: Clicking the link in the email leads to a website that mimics a Windows Blue Screen of Death.
  3. Social Engineering: The site provides instructions to "fix" the error. It directs the user to open the Windows "Run" box and paste a specific malicious code.
  4. Infection: Once the code is executed, it downloads DCRat, a remote access trojan.

The Danger of DCRat

Once installed, DCRat gives attackers full remote control over the infected computer. This allows them to:

  • Record keystrokes (keylogging).
  • Steal sensitive personal and financial information.
  • Monitor user activity in real-time.

To stay safe, never run commands or codes provided by unsolicited websites, and always verify reservation details directly through official apps or websites.

More

View all
SecurityJune 11, 2026

Dashlane Breach: Hackers Steal Encrypted Password Vaults

Dashlane confirms a security breach where hackers stole several encrypted user vaults via a 2FA brute-force attack. Learn how to protect your data.

SecurityJune 11, 2026

iFood Confirms Data Breach Impacting 1.2 Million Users

iFood confirms a data breach affecting 1.2 million users, involving names and CPF numbers. Investigation into IDOR vulnerability claims is ongoing.

TechJune 11, 2026

Nvidia RTX Spark: The Arm-Based Superchip Set to Redefine AI PCs

Nvidia's new RTX Spark superchip combines a Grace CPU and Blackwell GPU to power the next generation of Windows AI PCs from Dell, HP, and Microsoft.

New Malware Campaign Uses Fake Windows Blue Screen to Spread DCRat | Create 42