ClickFix
New Atomic macOS Stealer Campaign Exploits ClickFix to Target Apple Users
Cybersecurity researchers are alerting to a new malware campaign that employs the ClickFix social engineering tactic to trick users into downloading an information stealer malware known as Atomic macOS Stealer (AMOS) on Apple macOS systems. The campaign, according to CloudSEK, has been found to leverage typosquat domains mimicking U.S.-based telecom provider Spectrum. “macOS users are…
ClickFix Scam: How to Protect Your Business Against This Evolving Threat
Cybercriminals aren’t always loud and obvious. Sometimes, they play it quiet and smart. One of the tricks of making the rounds is called ClickFix. It doesn’t break down doors. Instead, it politely waits for you to open them. What makes ClickFix concerning for businesses is how perfectly it blends into everyday digital experiences. The malware…
State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns
Multiple state-sponsored hacking groups from Iran, North Korea, and Russia have been found leveraging the increasingly popular ClickFix social engineering tactic to deploy malware over a three-month period from late 2024 through the beginning of 2025. The phishing campaigns adopting the strategy have been attributed to clusters tracked as TA427 (aka Kimsuky), TA450 (aka MuddyWater),…