logo

And the Winner in Dominant Malware Delivery? ClickFix

ID: ee8b960b-74f8-57a0-abb5-ba3070dbf6ad

STIX ID: report--ee8b960b-74f8-57a0-abb5-ba3070dbf6ad

Feed Name: Dark Reading

Threat Score
75/100

Date Published: 2026-07-01

Date Updated: 2026-07-02

Author: Rob Wright

...
...

ReliaQuest research highlights the rapid rise of the ClickFix social‑engineering technique (first seen in 2024) that lures users into pasting malicious commands into system dialogs (Windows Terminal, macOS Script Editor) to deliver loaders and payloads such as Deepload and the Atomic/AMOS stealer. Attackers have expanded vectors (malvertising, emailed links, fake CAPTCHAs), targeted developers (leading to exposed tokens and persistent access), and adopted AI‑generated obfuscation, prompting recommendations for cross‑platform monitoring, user training, and logging/alerting of suspicious command execution sequences.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.