LeakNet ransomware uses ClickFix and Deno runtime for stealthy attacks
Over Security - Cybersecurity news aggregator [Unofficial]
March 17, 2026
The LeakNet ransomware gang is now using the ClickFix technique for initial access into corporate environments and deploys a malware loader based on the open-source Deno runtime for JavaScript and TypeScript.
Discussion in the ATmosphere