Wie erkennen Sie ClickFix and FakeUpdate attacks hijack thousands of legitimate sites to push malware?

Kurzfassung

Threat actor DriveSurge has compromised thousands of legitimate, high reputation websites and is silently redirecting visitors to malware payloads via two well known social engineering lures: ClickFix (fake verification pages that ask you...

Wie es funktioniert

Warnzeichen

A popup or page claiming a CAPTCHA/verification failed and asking you to open Run, Terminal, or PowerShell and paste a command. A browser update prompt appearing while browsing a random website (real updates live in the browser's own settings menu). A downloaded "update" delivered as a ZIP with multiple DLLs and an .exe installer

Was tun

1Never paste commands from a webpage into Windows Run, cmd, PowerShell, or macOS Terminal. Update browsers only via the app'

Quelle

bleepingcomputer

Quelle geprueft vom Mythos Forensic Team

https://www.bleepingcomputer.com/news/security/hackers-hijack-thousands-of-sites-for-clickfix-and-fakeupdate-attacks/

FAQ

Ist ClickFix and FakeUpdate attacks hijack thousands of legitimate sites to push malware ein reales Betrugsmuster?

Ja. Behandeln Sie Nachricht, Anruf oder Zahlungsaufforderung als verdaechtig, bis ein offizieller Kanal sie bestaetigt.

Was sind die ersten Warnzeichen?

A popup or page claiming a CAPTCHA/verification failed and asking you to open Run, Terminal, or PowerShell and paste a command. A browser update prompt appearing while browsing a random website (real updates live in the browser's own settings menu). A downloaded "update" delivered as a ZIP with multiple DLLs and an .exe installer

Was sollte ich zuerst tun?

Never paste commands from a webpage into Windows Run, cmd, PowerShell, or macOS Terminal. Update browsers only via the app'

Kann LegalAudit meinen Fall pruefen?

Ja. Starten Sie den kostenlosen Chat und fuegen Sie Nachricht, Link, Absender oder Zahlungsdaten ein.