Do You Often Click On Pop-Ups To Resolve An Issue On Chrome Or OneDrive? You Might Fall Prey To This Scam

If someone is trying to resolve an error by clicking on pop-ups then there is a possibility that the person might fall prey to this 'ClickFix' scam.

By : Aashish Kumar Shrivastava | Updated at : 20 Jun 2024 03:53 PM (IST)

ClickFix Cyberattack Cybersecurity Threat Chrome OneDrive Might Fall Prey To This Scam Do You Often Click On Pop-Ups To Resolve An Issue On Chrome Or OneDrive? You Might Fall Prey To This Scam

In order to safeguard yourself, you can keep a reliable antivirus software, being cautious while downloading any attachment and the third would be to never copy paste a code unless you fully understand it.

Source : Unsplash/@RoonZ nl

We are making advancements in the field of technology with each day that passes. This goes without saying that this exploration opens the horizon for both good and bad use of technology. In recent times, we have been witnessing an increase in cybersecurity threats and cyberattacks. The latest type of cyberattack to be added to the list is the 'ClickFix' attack. In this, scamsters use a malware named ClickFix and they take advantage of users who desire quick solutions to common issues in widely-used services like Chrome, OneDrive, and Microsoft.

People sometimes are trying to resolve some errors and in the process, they are lured into clicking a seemingly harmless Copy fix button. What they are unaware of is that they have unwittingly executed a malicious PowerShell or Windows Run dialogue that compromises their systems.

ALSO READ | Nikon Z6III Price Announced. Check Out How Much World’s First Camera With Partially Stacked CMOS Costs

How Does The Malware Work

As per a cybersecurity firm named Proofpoint, the scamsters install a 'root certificate' to clear the DNS cache, delete clipboard contents, display a fake message, and then install an extra remote PowerShell script.

This script then checks for virtual machines (VMs) prior to installing the information-stealing malware. A number of hacker groups, reportedly including those behind ClearFake, use this method to affect their target's system.

The script performs several checks to verify that your computer meets specific criteria before it proceeds to download additional payloads. However, the dangers extend beyond this, users should also be wary of an email-based attack that uses HTML attachments disguised as Word documents. These attachments prompt users to install a "Word Online" extension to view the file, introducing additional risks.

How To Safeguard Yourself Against This Attack

All this might have sounded a bit scary but protecting yourself against this attack is not much hassle. The first and foremost thing that you can do to safeguard yourself is to have reliable antivirus software installed. The second thing that you can do is to always be cautious when you are downloading any attachments even if it is from sources you trust. The last thing that you can do is to never copy and paste code unless you fully understand its purpose.

If you apply the aforementioned measures and stay up to date on emerging threats then you will have a high chance of keeping yourself protected from these malicious schemes.