GLOBAL SITUATIONMONITORING
482 published briefsUTCSun, Apr 5 22:00:52
ClickFix malware delivery
ClickFix is a social engineering technique where attackers display fake error screens (BSOD, CAPTCHA, updates) on websites, instructing victims to manually paste and execute malicious PowerShell commands that compromise their systems.
1 intelligence brief← Intelligence Hub
-
Microsoft says ClickFix campaign used Windows Terminal to deploy Lumma Stealer
Microsoft says a widespread ClickFix campaign observed in February 2026 used Windows Terminal instead of the Run dialog to launch a multi-stage attack chain that downloaded payloads, set scheduled-task persistence, added Defender exclusions, and injected Lumma Stealer into Chrome and Edge.