Fake Windows update pushes malware in new ClickFix attack

The ClickFix campaign disguises malware as legitimate Windows updates, using steganography to hide shellcode in PNG files and ...
Bleeping Computer

ClickFix attack uses fake Windows Update screen to push malware

ClickFix attack variants have been observed where threat actors trick users with a realistic-looking Windows Update animation in a full-screen browser page and hide the malicious code inside images.
PC Magazine

This Windows Update Screen Is Actually a Hacker's Trap

The fake update screen then instructs the user to press “CTRL + V”—the paste function—and then press enter. If a victim falls for the trick, they’ll unknowingly run a command, causing their Windows PC ...
CSOonline

New ClickFix attacks use fake Windows Update screens to fool employees

CSOs and Windows admins should disable the ability of personal computers to automatically run commands to block the latest version of the ClickFix social engineering attacks. This advice comes from ...
Hosted on MSN

Updated ClickFix malware impersonates Windows update to steal your passwords, browser cookies, banking logins

A sneaky new strain of the ClickFix malware is making the rounds, and it’s going after the easiest victim of all: anyone who trusts a Windows update prompt. Security researchers at Huntress say the ...