ClickFix

New ClickFix Attack Targeting Windows and macOS Users to Deploy Infostealer Malware

Ravi Jain
ClickFix, a sophisticated social engineering attack active in 2025 that deploys infostealer malware against both Windows and macOS users. This technique is highly effective because it bypasses traditional security tools by manipulating users into executing malicious fileless commands disguised as legitimate troubleshooting steps, leveraging trusted platforms like Google services to maintain credibility. The text explains the distinct attack vectors for Windows (distributing ACR stealer via fake software archives) and macOS (using a fake Cloudflare prompt to execute the Odyssey stealer via the Terminal), emphasizing the challenges security solutions face with this memory-resident malware. Finally, the document concludes with advice on recognizing and avoiding ClickFix, along with a pitch from Technijian, an Orange County-based Managed IT Services provider, detailing their services for helping organizations defend against such advanced cross-platform social engineering attacks. ... Read More
Cybercriminals Weaponize PuTTY Ads

Cybercriminals Weaponize PuTTY Ads to Deploy OysterLoader Malware in Sophisticated Attack Campaign

Ravi Jain
A highly sophisticated cyberattack campaign orchestrated by the Rhysida ransomware collective, which is distributing OysterLoader malware through malvertising. This campaign exploits legitimate advertising platforms, such as Bing, to push fraudulent links for popular software like PuTTY and Zoom, leading users to download malware disguised by the use of stolen and fraudulently obtained code-signing certificates. The overview also includes extensive information from a company named Technijian, which offers specialized cybersecurity services, including advanced threat detection and employee training, specifically designed to help organizations defend against this particular malvertising technique and the broader threat of initial access attacks. ... Read More