Someone's Hands Are on Your Keyboard Then Your Whole Network. Courtesy of ClickFix, Potemkin, RMMProject and EtherRAT

A single unmonitored endpoint compromised by a simple ClickFix social engineering prompt enabled attackers to stealthily deploy custom loaders, advanced RATs, and persistence mechanisms, resulting in full hands-on-keyboard control and lateral movement across 11 hosts—demonstrating how even small visibility gaps can escalate into network-wide breaches before defenders ever notice.