本文由Mosyle独家赞助，Mosyle是唯一整合苹果设备管理与安全防护的统一平台。其核心能力涵盖自动化安全加固与合规、新一代终端检测与响应（EDR）、AI驱动的零信任机制，以及独家特权管理功能，目前已获全球超过45,000家组织信赖。

一场针对macOS用户的ClickFix攻击活动正在蔓延，攻击者通过基于AppleScript的信息窃取程序，从14款浏览器、16个加密货币钱包以及200余个浏览器扩展中批量收割用户凭证与活跃会话Cookie。 Netskope威胁实验室研究员Jan Michael Alcantara向媒体透露，该团队最早于上月发现这一攻击活动，而类似案例直至上周仍在持续出现。 ClickFix是一种广泛流行的社 ...

A sneaky IAB operation uses a malicious traffic distribution system (TDS) to redirect visitors of trusted websites to ones ...

The websites are being abused as part of an Initial Access Broker campaign.

IT之家 10 月 18 日消息，微软现已发布《2025 数字防御报告（Digital Defense Report 2025）》，其中提到近年来“ClickFix”式攻击愈发流行。 微软指出，自 2024 年（去年）初起，基于 ClickFix 的攻击数量急剧上升。这种攻击通常以网页、邮件为载体，主要伪造一系列系统弹 ...

A threat actor tracked as DriveSurge has been operating large-scale malware distribution campaigns using ClickFix and ...

Clever hackers are using ClickFix, a new social engineering technique, to deliver malicious payloads to unsuspecting users and devices around the globe. Hackers are exploiting a technique called ...

ClickFix remains a persistent threat and attackers are getting smarter! Improved social engineering techniques, more convincing pages, and increasingly sophisticated lures are making these campaigns ...

The FBI director's Based Apparel site has been spotted hosting a 'ClickFix' attack, which involves duping users into running a seemingly benign, but malicious command.

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...

ReliaQuest observed attackers pairing ClickFix with the PySoxy proxy tool to establish redundant encrypted access paths and persistence on compromised systems. ClickFix, a one-shot social engineering ...

ClickFix campaigns are gaining steam according to various security researchers, with recent campaigns spotted across the globe from a wide swath of cyberattackers. The increasingly popular tactic ...