一场针对macOS用户的ClickFix攻击活动正在蔓延，攻击者通过基于AppleScript的信息窃取程序，从14款浏览器、16个加密货币钱包以及200余个浏览器扩展中批量收割用户凭证与活跃会话Cookie。 Netskope威胁实验室研究员Jan ...

网络安全研究人员发现了一种功能更强的新型ClickFix攻击变种，其运作方式与安全团队此前观察到的版本存在显著差异。攻击者不再依赖PowerShell，转而串联使用Windows原生工具cmdkey和regsvr32，实现在不向磁盘写入任何文件的情况 ...

IT之家 4 月 9 日消息，苹果设备管理和安全公司 Jamf 昨日（4 月 8 日）发布报告，称 Mac 平台 ClickFix 攻击手法升级，攻击者放弃传统的终端复制粘贴模式，转而利用系统自带的脚本编辑器作为突破口。 IT之家曾于今年 3 月报道，有黑客发起名为 ClickFix 的新型攻击 ...

BlueNoroff hackers used fake Zoom calls, ClickFix prompts, and fileless PowerShell malware to steal credentials from Web3 and ...

IT之家 10 月 18 日消息，微软现已发布《2025 数字防御报告（Digital Defense Report 2025）》，其中提到近年来“ClickFix”式攻击愈发流行。 微软指出，自 2024 年（去年）初起，基于 ClickFix 的攻击数量急剧上升。这种攻击通常以网页、邮件为载体，主要伪造一系列系统弹 ...

A ClickFix campaign targeting macOS users delivers an AppleScript-based infostealer that collects credentials and live ...

Forbes contributors publish independent expert analyses and insights. Zak Doffman writes about cybersecurity, surveillance and privacy. There are some attacks that should never get through. Period. It ...

Cybersecurity experts are warning about a surge in sophisticated phishing tactics, including a fake CAPTCHA scam known as 'ClickFix' and a sharp rise in QR code-based attacks. These methods bypass ...

The ClickFix attack technique has gotten so popular that even state-sponsored threat actors are using it, research from Proofpoint claims, having observed at least three groups leveraging the method ...

ClickFix campaigns are gaining steam according to various security researchers, with recent campaigns spotted across the globe from a wide swath of cyberattackers. The increasingly popular tactic ...

Lazarus continues leveraging ClickFix for initial access and data theft, in this case, against Mac-centric organizations and ...

A new campaign employing ClickFix attacks has been spotted targeting both Windows and Linux systems using instructions that make infections on either operating system possible. ClickFix is a social ...