OP 24 January, 2025 - 01:04 AM
The attack, spotted by vx-underground, is a new variant of the "Click-Fix" tactic that has become very popular among threat actors to distribute malware over the past year.
However, instead of being fixes for common errors, this variant pretends to be a captcha or verification system that users must run to join the channel.
Last month, researchers from Guardio Labs and Infoblox researchers revealed a new campaign that utilized CAPTCHA verification pages that prompt users to run PowerShell commands to verify they are not a bot.
Continue reading:
Source
BleepingComputer
https://www.bleepingcomputer.com/news/se...l-scripts/
However, instead of being fixes for common errors, this variant pretends to be a captcha or verification system that users must run to join the channel.
Last month, researchers from Guardio Labs and Infoblox researchers revealed a new campaign that utilized CAPTCHA verification pages that prompt users to run PowerShell commands to verify they are not a bot.
Continue reading:
Source
BleepingComputer
https://www.bleepingcomputer.com/news/se...l-scripts/