OneClik: A ClickOnce-Based APT Campaign Targeting Energy, Oil & Gas Infrastructure

The Trellix Advanced Research Center has uncovered a sophisticated APT malware campaign that we’ve dubbed OneClik. It specifically targets the energy, oil, and gas sector through phishing attacks and the exploitation of Microsoft ClickOnce. The campaign exhibits characteristics aligned with Chinese-affiliated threat actors, though attribution remains cautious. Its methods reflect a broader shift toward “living off the land”…

Read More

CrowdStrike & AWS Announce the 2025 Cybersecurity Accelerator Winner

RSA 2025 — CrowdStrike  today announced Terra Security as the winner of the second annual Amazon Web Services (AWS) and CrowdStrike Cybersecurity Startup Accelerator, presented in collaboration with the NVIDIA Inception program for startups. Terra Security was recognized for its innovations in agentic AI-powered, continuous web application penetration testing. The 2025 program drew hundreds of applicants from across the…

Read More