Mastodawn

Fake Windows update pushes malware in new ClickFix attack
https://cyberguy.com/privacy/fake-windows-update-pushes-malware-new-clickfix-attack/

#Infosec #Security #Cybersecurity #CeptBiro #Fake #WindowsUpdate #Malware #ClickFixAttack

The DefendOps Diaries May 11, 2025

Ever trusted a CAPTCHA just to click "I'm not a robot?" Think again—attackers are now using fake CAPTCHAs to sneak malware onto your device. You might be one click away from danger. Read more.

https://thedefendopsdiaries.com/the-clickfix-attack-unmasking-the-fake-captcha-deception/

#clickfixattack
#fakecaptcha
#socialengineering
#cybersecurityawareness
#malwareprevention

Rene Robichaud Mar 3, 2025

New ClickFix attack deploys Havoc C2 via Microsoft Sharepoint
A recent ClickFix phishing campaign tricks users into executing malicious PowerShell commands via fake OneDrive error messages in HTML attachments. This tactic deploys the Havoc post-exploitation framework, granting attackers remote access to compromised systems.
https://www.bleepingcomputer.com/news/security/new-clickfix-attack-deploys-havoc-c2-via-microsoft-sharepoint/

#Infosec #Security #Cybersecurity #CeptBiro #ClickFixAttack #HavocC2 #MicrosoftSharepoint

New ClickFix attack deploys Havoc C2 via Microsoft Sharepoint

A newly uncovered ClickFix phishing campaign is tricking victims into executing malicious PowerShell commands that deploy the Havok post-exploitation framework for remote access to compromised devices.

BleepingComputer