Gizmodo readers hit with ClickFix malware prompts after account compromise
ID: bcc51c5f-1b11-5b85-b3d6-e502f6ba0b08
STIX ID: report--bcc51c5f-1b11-5b85-b3d6-e502f6ba0b08
Feed Name: The Register (Security)
Threat Score
Gizmodo experienced a brief site compromise where an account was used to inject a malicious script that displayed ClickFix fake CAPTCHA prompts; Windows visitors were targeted with a NetSupport RAT installer while the macOS payload was reportedly non-functional. The activity is linked to an ErrTraffic affiliate delivering malware via social-engineering prompts; Gizmodo removed the script, secured the account, and took the site offline temporarily.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
