Search
Get in Touch
How to

Experts warn ClickFix malware attacks are back, and more dangerous than ever before – here’s how to stay safe

TechRadar
TechRadar
  • ClickFix now uses OS detection, timers, and video guides to boost malware delivery success
  • Attackers host popups on compromised sites and promote them via Google malvertising
  • Victims are tricked into running malware via fake problem/solution instructions in system dialogs

The dreaded malware deployment technique known as ClickFix is evolving, and now comes with a timer, video instructions, and automatic detection of the victim’s operating system, experts have warned.

ClickFix is a malware delivery scam that uses the problem/solution method – it first identifies a “problem” and then offers a “solution”. That problem can be a myriad of things, from “your computer is infected with malware” to “solve this CAPTCHA if you want to view the content”. The solution is almost always the same: copying and pasting a command in the Windows Run program (or its Linux/macOS equivalent) that deploys a malware dropper and through it – an infostealer or something even more sinister.

Usually, the instructions for the solution were written on the “problem” popup, but cybersecurity researchers Push Security recently observed an attack with video instructions, designed to make the entire process feel less suspicious and more credible. It also comes with a fake counter of the number of people that “verified” in the last hour, probably serving as a secondary credibility mechanic.

Stolen websites and malvertising

At the same time, the popup also came with a one-minute timer, pressuring the victim into moving fast instead of pausing to think about what they’re doing.

Finally, the new ClickFix scripts first check to see which operating system the victim is running, in order to display the right video and the proper instructions for the malware download.

The ClickFix popups need to be hosted somewhere, and that is usually done on legitimate, but compromised, websites. Push Security says that in this latest campaign, the attackers not only compromised the sites, but also launched malvertising campaigns on Google Search.

Defending against ClickFix remains the same – slow down and think before you click, update your operating systems and software, and make sure to run a reputable antimalware solution.

Via BleepingComputer

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

Read more @ TechRadar

Previous article
I’m a TV reviewer and these are my top 6 early Black Friday TV deals from LG, Samsung and Hisense
Next article
Black Friday is 3 weeks away – here are 35 early deals from Amazon I’m shopping today
TechRadar
TechRadar

Latest posts

You need to watch the modern horror masterpiece, His House

The Verge - 0
There's an argument to be made that "the real monster is trauma" has become an overused trope in modern horror. Hereditary, The Babadook, and,...

X cuts off the European Commission’s ad account after being fined €120 million

The Verge - 0
Friday, the EU slapped X with a €120 million fine (about $140 million) for violating the Digital Services Act (DSA). It was the first...

Netflix CEO made a visit to the White House before buying Warner Bros.

The Verge - 0
In November, Ted Sarandos, Netflix’s co-CEO made a trip to the White House for a lengthy meeting with Donald Trump. According to Bloomberg, the...

The Lord of the Rings trilogy returns to theaters in January for 25th anniversary

Engadget - 0
One does not simply spend more than 11 hours watching The Lord of the Rings trilogy in a single weekend at home when...

Apple’s AirPods Pro 3 drop to $230 on Amazon

Engadget - 0
If you haven't yet upgraded to Apple's AirPods Pro 3, you can pick up the company's latest model at a discount through a deal...

Looking for a Breville espresso machine? I’m a certified barista, and these are my 3 top recommendations

TechRadar - 0
Breville is one of the biggest names in home coffee makers, and makes some of the best espresso machines I've tested here at TechRadar....

Good news, I found the cheapest large-capacity PCIe Gen4 SSD per TB – bad news, it will cost you more than $58,300

TechRadar - 0
Solidigm's 61.44TB SSD offers lower cost per TB than any other large driveBulk purchases push the price below $95 per TB for 614TB of...

I bought a Kia EV6, my first electric car – here are 9 things I wish I’d known before buying an EV

TechRadar - 0
When I bought my Kia EV6, I wasn’t planning on going electric. I’d rented a Tesla Model 3, and the experience was terrible. But...

X shuts down the European Commission’s ad account the day after major fine

Engadget - 0
Just a day after receiving a roughly $140 million fine, X has terminated the ad account of the European Commission. Nikita Bier, X's head...

OpenAI’s head of ChatGPT says posts appearing to show in-app ads are ‘not real or not ads’

Engadget - 0
Those might not exactly be ads you're seeing on ChatGPT, at least according to OpenAI. Nick Turley, OpenAI's head of ChatGPT, clarified the confusion...

Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!

The AIVAnet is a collector and classifier of app news articles and online technology news, which works automatically by collecting and collating the RSS feeds from popular sites (IOS news feed,latest tablet news, etc.).

The articles deal with mobile app reviews, especially with android reviews, and IOS. One of the central thematic axes is also the comparisons. You can find articles with tablet reviews, comparisons and mobile OS systems or mobile OS stats.

We also provide some of the most popular app news express, for android and IOS or windows phone. The online technology news that you can find in our pages are just opinions and ideology, allowing you to see how different news agencies present the same news.

AIVAnet is supported by Cloud Services Store

About Us

© AIVAnet | All rights reserved