Hosted on MSN

A fake Windows Update screen is fooling Windows users into installing malware

Full-screen fake Windows Update or captcha tricks users into pasting and running attacker commands. Malware is steganographically stored in PNG pixels; a .NET Stego Loader extracts, decrypts, and runs ...
Bleeping Computer

ClickFix attack uses fake Windows Update screen to push malware

ClickFix attack variants have been observed where threat actors trick users with a realistic-looking Windows Update animation in a full-screen browser page and hide the malicious code inside images.
Bleeping Computer

New Mad Liberator gang uses fake Windows update screen to hide data theft

A new data extortion group tracked as Mad Liberator is targeting AnyDesk users and runs a fake Microsoft Windows update screen to distract while exfiltrating data from the target device. The operation ...
Forbes

Do Not Download These Windows Security Updates, Experts Warn

ClickFix attack employs fake Windows security udpates. Updated November 27 with another Windows update warning, along with threat intelligence from the Acronis Threat Research Unit regarding the use ...
Dark Reading

ClickFix Campaign Serves Up Fake Blue Screen of Death

A new ClickFix attack has emerged to target clients of the hospitality sector using a multistage infection chain that combines typical fake captcha challenges with exploitation of the dreaded ...