- ClickFix now uses OS detection, timers, and video tutorials to improve malware delivery efficiency.
- Attackers place pop-ups on hacked sites and promote them using Google malvertising.
- Victims are tricked into running malware through fake problem/solution instructions in system dialogs.
Horrible malware The deployment technology, known as ClickFix, has evolved to include a timer, video instructions and automatic victim detection. operating systemexperts warned.
ClickFix is a malware delivery scam that uses a problem/solution method: first identifying a “problem” and then offering a “solution”. There could be a variety of reasons for this problem, ranging from “your computer is infected with malware” to “solve this CAPTCHA if you want to view the content.” The solution is almost always the same: copy and paste a command into a Windows Run program (or its equivalent on Linux/macOS), which launches a malware dropper and through it an infostealer or something even more sinister.
Typically, instructions for resolving a problem would be written in a pop-up “problem” window, but cybersecurity researchers at Push Security recently observed an attack with video instructions designed to make the entire process less suspicious and more trustworthy. It also features a fake counter for the number of people who have “checked” in the last hour, which likely serves as a secondary trust mechanism.
Stolen Websites and Malvertising
At the same time, the pop-up also comes with a one-minute timer, forcing the victim to move faster rather than stopping to think about what he is doing.
Finally, the new ClickFix scripts first check what operating system the victim is using to display the correct video and correct instructions for downloading the malware.
ClickFix pop-ups need to be placed somewhere, and this is usually done on legitimate but hacked websites. Push Security reports that in this latest campaign, attackers not only compromised websites, but also launched malvertising campaigns on Google Search.
Protection from ClickFix remains the same: slow down and think before you click, update your operating systems and software, and be sure to use a reliable anti-malware solution.
By using PipComputer
The best antivirus for any budget
Follow TechRadar on Google News. And add us as your preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the “Subscribe” button!
And of course you can also Follow TechRadar on TikTok. for news, reviews, unboxing videos and get regular updates from us on whatsapp too much.
