Skip to main content
  1. Home
  2. Computing
  3. News

Whatever you do, don’t click this error if you see it pop up

By
Example of the fake Chrome error hackers to trick people into installing malware.
Proofpoint

Hackers have devised a new, deceptive method to trick users into installing a malware named ClickFix, according to cybersecurity firm Proofpoint. The scheme involves enticing users with fake solutions to common errors in popular services such as Chrome, OneDrive, and Microsoft. Once users download and execute these “fixes” by clicking the Copy fix button, they unwittingly run a PowerShell or a Windows Run dialogue command that compromises their systems.

This dialogue installs a “root certificate” to flush the DNS cache, remove the clipboard content, show a fake message, and install an additional remote PowerShell script that does an anti-VM check before the info-stealer is installed. Various hacker groups, including those responsible for ClearFake, allegedly use this method. Proofpoint details how hackers exploit jeopardized sites by incorporating a malicious script handed over by Binance’s Smart Chain contract on the blockchain to spread malware and infect susceptible Windows computers.

Recommended Videos

The script will perform a series of checks to see if your computer is an acceptable candidate before downloading more payloads. It doesn’t end there since users also need to be aware of an email-based threat that uses HTML attachments with a Word look to them. These attachments will encourage users to download a “Word Online” extension to see the file.

This other threat also has a high level of user interaction since a PowerShell command needs to be executed. Proofpoint spotted payloads such as Matanbuchus, DarkGate, NetSupport, XM Rig, Amadey Loader, a clipboard hijacker, and Lumma Stealer.

As scary as this might sound, there are plenty of precautions you can take to prevent falling victim to this type of sneaky attack. One such precaution is using one of the best antivirus programs, such as Norton or Bitdefender. Always be careful with the attachments you download, even from a trustworthy source. Remember never to copy or paste any code unless you know what it does.

By taking these precautions and staying informed on the latest threats, you can increase your chances of avoiding them.

Editors’ Recommendations

Topics
Judy Sanhz
Judy Sanhz
Computing Writer
Judy Sanhz is a Digital Trends computing writer covering all computing news. Loves all operating systems and devices.
Whatever you do, don’t buy an Nvidia GPU right now
Three RTX 4080 cards sitting on a pink background.

If you're trying to build or upgrade a PC, now is the best time to buy many different components. Black Friday brings huge discounts on parts, making it the best time of the year to stretch your dollar the furthest. But this year, there's one important part you should wait on: a new Nvidia graphics card.

That's not because Nvidia's latest GPUs are bad -- they're some of the best graphics cards you can buy -- but because we're likely on the brink of a major refresh to Nvidia's current lineup of GPUs, and the deals we're seeing now will probably become the norm in just a few months.
A Super refresh incoming?

Read more
Whatever you do, don’t buy a MacBook Pro right now
Apple MacBook Pro seen from the side.

I know plenty of people walk into Apple Stores and buy a MacBook right off the shelf because they need one. I get it.

But if you're considering a purchase of a MacBook Pro, in particular, it'll really pay off to pump the brakes. Apple is holding a surprise product launch event next Monday, and if the rumors are to be believed, all three MacBook Pros are going to get updated. Upgrading all three at once would be an unprecedented way to upgrade these laptops for Apple as it simultaneously launches the M3, M3 Pro, and M3 Max chips.

Read more
Don’t buy the Surface Laptop Go 3 — here’s what you should get instead
Microsoft Surface Laptop Go 3 front view showing display and keyboard.

As a former marketing professional and a laptop reviewer, I often find myself surprised and sometimes confused by the decisions companies make when launching a laptop. An example is when a company introduces just one or two configurations that may not meet the needs of a range of users and, as a result, starts a laptop off on the wrong foot. In that case, I can at least understand the complexity of manufacturing and component sourcing. Although I'll mention a lack of options in a review, I won't necessarily ding a laptop because of it.

Some mistakes, though, are harder to overlook. That's how I feel about Microsoft's Surface Laptop Go 3, which the company introduced at a significantly higher price than its predecessors. The laptop, which is designed and configured like a budget machine, starts at $800 and runs up to $1,000. Those are midrange prices, but the Surface just can't compete against many midrange laptops.
$800 is too much
Asus Zenbook 14 OLED Mark Coppock / Digital Trends

Read more