The ClickFix social engineering tactic, utilizing fake CAPTCHA verifications as an initial access vector, saw a 517% increase from the second half of 2024 to the first half of this year, according to ESET data. This tactic is linked to a growing list of threats, including infostealers, ransomware, remote access trojans, cryptominers, and post-exploitation tools.
Explain It To Me Like I’m 5: The ClickFix social engineering tactic leveraging fake CAPTCHA verifications saw a staggering 517% increase as an initial access vector, leading to a growing array of threats like infostealers, ransomware, and remote access trojans, according to ESET data.
Want More Context? 🔎