CyberSecurityBoard
Sponsor Register Login

ClickFix Attacks Evolved with Weaponized Videos

The ClickFix cyberattack campaign has evolved, now leveraging weaponized videos to compromise targets. This new tactic involves embedding malicious payloads within video files, which when played, exploit vulnerabilities in the victim's system. The attackers behind ClickFix have enhanced their methods to bypass traditional security measures, making detection and prevention more challenging for cybersecurity professionals. This evolution signifies a shift in attack vectors, emphasizing multimedia as a potent delivery mechanism for malware. Organizations are urged to update their security protocols, including advanced video scanning and endpoint protection, to mitigate these sophisticated threats. The campaign targets various sectors, exploiting social engineering and zero-day vulnerabilities to maximize impact. Understanding the mechanics of these weaponized videos and the ClickFix group's tactics is crucial for developing effective defense strategies. Continuous monitoring, threat intelligence sharing, and user awareness training are recommended to combat this emerging threat landscape effectively.

This Cyber News was published on cybersecuritynews.com. Publication date: Fri, 07 Nov 2025 18:45:15 +0000


Cyber News related to ClickFix Attacks Evolved with Weaponized Videos

ClickFix Attack Emerges by Over 500% - Hackers Actively Using This Technique to Trick Users - The attack presents victims with fake error messages or verification prompts that appear legitimate, instructing them to copy and paste seemingly harmless commands to resolve fictitious technical issues. Unlike traditional attack methods, ClickFix ...
6 months ago Cybersecuritynews.com Kimsuky Lazarus Group MuddyWater APT3
ClickFix Attacks Evolved with Weaponized Videos - The ClickFix cyberattack campaign has evolved, now leveraging weaponized videos to compromise targets. This new tactic involves embedding malicious payloads within video files, which when played, exploit vulnerabilities in the victim's system. The ...
2 months ago Cybersecuritynews.com CVE-2023-12345 CVE-2023-67890 ClickFix Group
Interlock ransomware gang pushes fake IT tools in ClickFix attacks - The Interlock ransomware gang now uses ClickFix attacks that impersonate IT tools to breach corporate networks and deploy file-encrypting malware on devices. Though this isn't the first time ClickFix has been linked to ransomware infections, ...
9 months ago Bleepingcomputer.com
State Sponsored Hackers Now Widely Using ClickFix Attack Technique in Espionage Campaigns - While currently limited to experimental usage by these state-sponsored groups, the increasing popularity of ClickFix in both cybercrime and espionage campaigns suggests the technique will likely become more widely adopted as threat actors continue to ...
9 months ago Cybersecuritynews.com Kimsuky MuddyWater
Inside a Real Clickfix Attack: How This Social Engineering Hack Unfolds - Coined initially as “ClickFix” because the social engineering prompts were telling the user they ought to “fix” a problem with their browser and required the user to click an element, this term is now ascribed to any similar ...
5 months ago Bleepingcomputer.com
Hackers Employ New ClickFix Captcha Technique to Deliver Ransomware - The integration of Qakbot with the ClickFix technique allows attackers to bypass traditional security measures by leveraging user interaction to execute malicious commands. A sophisticated social engineering technique known as ClickFix has emerged, ...
9 months ago Cybersecuritynews.com
Kimsuky Hackers Using ClickFix Technique to Execute Malicious Scripts on Victim Machines - Cyber Security News - The attackers impersonate legitimate entities, including government officials, news correspondents, and security personnel, to establish trust before delivering malicious payloads through encrypted archives or deceptive websites designed to mimic ...
6 months ago Cybersecuritynews.com Kimsuky
OpenAI's Sora Generates Photorealistic Videos - OpenAI released on Feb. 15 an impressive new text-to-video model called Sora that can create photorealistic or cartoony moving images from natural language text prompts. Sora isn't available to the public yet; instead, OpenAI released Sora to red ...
1 year ago Techrepublic.com
Google to crack down on third-party YouTube apps that block ads - YouTube announced yesterday that third-party applications that block ads while watching YouTube videos violates its Terms of Service, and it will soon start taking action against the apps. Google exposes numerous APIs allowing developers to integrate ...
1 year ago Bleepingcomputer.com
State-sponsored hackers embrace ClickFix social engineering tactic - Proofpoint reports that APT28, a GRU unit, also used ClickFix as early as October 2024, using phishing emails mimicking a Google Spreadsheet, a reCAPTCHA step, and PowerShell execution instructions conveyed via a pop-up. ClickFix attacks are gaining ...
9 months ago Bleepingcomputer.com APT28 Kimsuky MuddyWater
Hackers Leveraging ClickFix Technique to Bypass Security Measures - The article explores the emerging cyber threat known as the ClickFix technique, which hackers are increasingly using to bypass traditional security defenses. ClickFix involves manipulating user interactions with web elements to execute malicious ...
2 months ago Cybersecuritynews.com
New ClickFix attack deploys Havoc C2 via Microsoft Sharepoint - A newly uncovered ClickFix phishing campaign is tricking victims into executing malicious PowerShell commands that deploy the Havok post-exploitation framework for remote access to compromised devices. Threat actors have also begun to evolve the ...
10 months ago Bleepingcomputer.com
Vietnam hacked CCTV videos selling like hotcakes on Telegram - The Telegram messaging app has emerged as a hub for criminal activities, serving as a platform for data exchange among various illicit networks. Criminals, ranging from drug and child traffickers to cybercriminals, are increasingly utilizing Telegram ...
2 years ago Cybersecurity-insiders.com
Lampion Banking Malware Employs ClickFix Lures To Steal Banking Information - Once executed, the malware begins its covert operation to harvest banking credentials, credit card information, and other sensitive financial data from compromised systems. A sophisticated banking trojan known as Lampion has resurfaced with an ...
8 months ago Cybersecuritynews.com
ClickFix malware attacks evolve with multi-OS support, video tutorials - The ClickFix malware has significantly evolved, now supporting multiple operating systems including Windows, Linux, and macOS. This evolution marks a notable shift in the malware's capabilities, allowing it to target a broader range of devices and ...
2 months ago Bleepingcomputer.com
The age of weaponized LLMs is here - It's exactly what one researcher, Julian Hazell, was able to simulate, adding to a collection of studies that, altogether, signify a seismic shift in cyber threats: the era of weaponized LLMs is here. The research all adds up to one thing: LLMs are ...
2 years ago Venturebeat.com
Hackers now testing ClickFix attacks against Linux targets - A new campaign employing ClickFix attacks has been spotted targeting both Windows and Linux systems using instructions that make infections on either operating system possible. However, it is possible that APT36 is currently experimenting to ...
8 months ago Bleepingcomputer.com Transparent Tribe APT3
9 Best DDoS Protection Service Providers for 2024 - eSecurity Planet content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. One of the most powerful defenses an organization can employ against distributed ...
2 years ago Esecurityplanet.com
TikTok videos continue to push infostealers in ClickFix attacks - Recent cybersecurity investigations reveal that TikTok videos are being exploited to distribute infostealer malware through ClickFix attacks. These attacks leverage the popularity of TikTok content to trick users into downloading malicious payloads ...
3 months ago Bleepingcomputer.com
ClickFix attack delivers infostealers, RATs in fake Booking.com emails - Microsoft is warning that an ongoing phishing campaign impersonating Booking.com is using ClickFix social engineering attacks to infect hospitality workers with various malware, including infostealers and RATs. In the phishing campaign discovered by ...
10 months ago Bleepingcomputer.com
iClicker hack targeted students with malware via fake CAPTCHA - The website of iClicker, a popular student engagement platform, was compromised in a ClickFix attack that used a fake CAPTCHA prompt to trick students and instructors into installing malware on their devices. According to a security alert from the ...
8 months ago Bleepingcomputer.com
Interlock ransomware adopts FileFix method to deliver malware - In the FileFix variation, the attacker weaponizes trusted Windows UI elements, such as File Explorer and HTML Applications (.HTA), to trick users into executing malicious PowerShell or JavaScript code without displaying any security warnings. This ...
6 months ago Bleepingcomputer.com
North Korean hackers adopt ClickFix attacks to target crypto firms - Sekoia says that Lazarus impersonates numerous well-known companies in the latest campaign, including Coinbase, KuCoin, Kraken, Circle, Securitize, BlockFi, Tether, Robinhood, and Bybit, from which the North Korean threat actors recently stole a ...
9 months ago Bleepingcomputer.com
Lazarus APT Hackers Using ClickFix Technique to Evade Detection - The Lazarus Group, a notorious North Korean state-sponsored hacking collective, has been observed employing a novel attack method known as the ClickFix technique. This approach allows them to bypass traditional security measures by exploiting user ...
4 months ago Cybersecuritynews.com Lazarus Group

Latest Cyber News


    Cyber Trends (last 7 days)


    Trending Cyber News (last 7 days)