New TELEPUZ Malware Spreads via ClickFix to Steal Data and Run Commands

Summary

A new modular malware named TELEPUZ has been observed spreading since late April 2026, utilizing websites infected with ClickFix lures. This malware is described as full-featured, lightweight, and modular, with capabilities for data theft and command execution.

IFF Assessment

FOE

The emergence of new malware capable of stealing data and executing commands poses a direct threat to defenders.

Defender Context

Defenders should be aware of the TELEPUZ malware and its distribution method via ClickFix lures, as it represents a new threat vector. Monitoring for signs of its activity, such as unusual network traffic or data exfiltration, will be crucial for early detection and mitigation.

Read Full Story →