{"id":8521,"date":"2025-11-18T07:05:32","date_gmt":"2025-11-18T07:05:32","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2025\/11\/18\/new-evalusion-clickfix-campaign-html\/"},"modified":"2025-11-18T07:05:32","modified_gmt":"2025-11-18T07:05:32","slug":"new-evalusion-clickfix-campaign-html","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2025\/11\/18\/new-evalusion-clickfix-campaign-html\/","title":{"rendered":"New EVALUSION ClickFix Campaign Delivers Amatera Stealer and NetSupport RAT"},"content":{"rendered":"<p>    New EVALUSION ClickFix Campaign Delivers Amatera Stealer and NetSupport RAT<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>Cybersecurity researchers have discovered malware campaigns using the now-prevalent ClickFix social engineering tactic to deploy Amatera Stealer and NetSupport RAT.<br \/>\nThe activity, observed this month, is being tracked by eSentire under the moniker EVALUSION.<br \/>\nFirst spotted in June 2025, Amatera is assessed to be an evolution of ACR (short for &#8220;AcridRain&#8221;) Stealer, which was available under the<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><\/p>\n<p> \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/thehackernews.com\/2025\/11\/new-evalusion-clickfix-campaign.html\">Go to TheHackersNews<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>New EVALUSION ClickFix Campaign Delivers Amatera Stealer and NetSupport RAT Cybersecurity researchers have discovered malware campaigns using the now-prevalent ClickFix social engineering tactic to deploy Amatera Stealer and NetSupport RAT. The activity, observed this month, is being tracked by eSentire under the moniker EVALUSION. First spotted in June 2025, Amatera is assessed to be an [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[60],"tags":[76],"class_list":["post-8521","post","type-post","status-publish","format-standard","hentry","category-thehackersnews","tag-thehackersnews"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/8521"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=8521"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/8521\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=8521"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=8521"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=8521"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}