ClickFix: How to Infect Your PC in Three Easy Steps

Cyber criminals are using a scam called ClickFix which asks people visiting a hacked site to distinguish themselves from bots by pressing a key combination that triggers the download of password-stealing malware.
The attack fools people into thinking it is a CAPTCHA test which websites use to separate genuine enquiries from bots.
After clicking the ‘I’m not a robot’ button, a box comes up with three steps the user must complete.
The first involves pressing the Windows and ‘R’ keys, the second pasting in malicious code and the third pressing ‘enter’ to download the malware.
This particular scam has been targeting hotel workers who use booking.com, with malicious emails impersonating the site.
It can take many forms including Facebook popups and fake Google Chrome pages.
There is a way for organisations to restrict Windows from executing the ‘run’ command but it must be implemented on a group policy level.

Fast Feed