This Dangerous Email Tricks You Into Hacking Your Own PC

Do not be tricked into hacking your own PC.
getty
Take a walk through any major tourist city in the world, and eventually you will see them. On a bridge or promenade or in a park. Someone sitting with three plastic cups and a bunch of onlookers, watching as someone is scammed.
Everyone knows it's a scam. It doesn't matter that you've watched as the marble is placed under a cup, keeping an eagle eye on it as the three cups are swapped around. The marble has moved and you cannot win. You know you should know better.
So it is with the so-called ClickFix lures currently hacking PCs around the world. The leading example of the new wave of 'scam yourself' attacks, you know you should know better. But the cleverness of the hook, the trickery of the scammer still works.
As McAfee explains, ClickFix attacks 'begin with users being lured to visit seemingly legitimate but compromised websites. Upon visiting, victims are redirected to domains hosting fake popup windows that instruct them to paste a script into a PowerShell terminal.' In reality, this 'sophisticated form of social engineering, leveraging the appearance of authenticity' just 'manipulates users into executing malicious scripts.'
The email lure.
Cofense
A new warning from Cofense has just outed one of the most devious lures I've seen recently. It's a nasty attack that plays on the human emotions and fears of the victim being scammed, so much so that they don't see the attack coming. But they should.
The dangerous email lure is sent to businesses in the travel industry, purporting to be from market giant Booking.com, warning that a customer has made a serious complaint and giving the recipient a time-boxed opportunity to respond using the link provided.
This click launches ClickFix
Cofense
'While the exact email structure varies from sample to sample,' Cofense says, 'these campaigns generally provide Booking.com-spoofing emails with embedded links to a ClickFix fake CAPTCHA site which is used to deliver a malicious script that runs RATs and/or information stealers.'
The campaign 'preys on the recipient's fear of leaving a guest dissatisfied' and might 'claim that a guest was trying to contact the hotel but was unable to get a response.' Cofense provides one such example, which is 'particularly notable for mentioning potential reputational damage and giving a strict 24-hour deadline for compliance.'
ClickFix attack.
Cofense
Not all these attacks are negative, some suggest requests or questions from future (imaginary) guests, while also providing a link for the hotel operator to respond. 'The emails used in these campaigns will sometimes state that the embedded link only works on Windows computers,' simply because this malware only infects Windows PCs.
But despite the lure, the attack is the same as all the others. In this case it's a CAPTCHA 'Robot or Human?" challenge, which instructs the user to open a Windows prompt and paste in the text on the PC's clipboard, and then press Enter. Absent a few wording changes, there is no variation in this part of the attack. It's the most blatant tell.
Cofense says some of the latest attacks used Cloudflare CAPTCHAs while others used Booking.com's brand instead. The instructions, though, are all the same. Once you know about ClickFix, in theory at least you can't be fooled. But the cybercriminals will try nonetheless, and the attacks are flying, so it's working.
Don't be fooled. Never paste in copied text and hit Enter in this way. Whether it's a CAPTCHA, a secure website or document restriction, or a technical fault, it's always an attack. And the hacker is always you.

Try Our AI Features

Explore what Daily8 AI can do for you:

Learn with AIFact CheckingText to SpeechAI Summary

Related Articles

Forbes

2 hours ago

• Forbes

Microsoft Has Blocked Google Chrome, Windows 11 Users Complain

Microsoft Family Safety on Windows 11 is blocking Google Chrome More often than not, if you see Windows and Google Chrome in the same headline, it's because a browser update to patch a security issue has been released. Thankfully, that's not the case here. However, when Microsoft, the world's most popular operating system vendor, appears to have blocked the world's most popular web browser, Chrome, that's surely cause for concern. So, what is happening, and how can you address the issue if you are affected by it? I've been trying to find out. Microsoft Family Safety Blocks Google Chrome On Windows 11, Users Complain Parental control software is designed to enable parents to protect their children from dangers, both perceived and very real, on the internet. Windows 11 has this functionality built into the operating system, through a feature called Microsoft Family Safety. This gives parent the ability to create what can be considered a safe environment for their children to browse the web, and this is accomplished by the use of content filtering. But what if that content filtering goes rogue? The issue was first reported June 3 by Windows 11 users on Reddit, and the complaints have continued to come in across various forums ever since. The problem appears to have started following the Google Chrome update to version 137.0.7151.68/69, since when users have reported that the browser will close down and then not reopen again when the Microsoft Family Safety feature is used. There do not appear to be any similar issues being reported from those using Microsoft Edge and parental controls. While Google has published a support posting that acknowledges the problem, stating that it has 'investigated these reports and determined the cause of this behavior,' as being 'when Microsoft Family Safety is enabled,' Microsoft itself has made no public announcements. I have approached both Microsoft and Google for an official statement, and will update this article if any is forthcoming. Meanwhile, Google has suggested the following workaround, which some reports suggest is the same advice being given by Microsoft to users who sought support:

Yahoo

5 hours ago

• Yahoo

Perplexity's AI-powered browser opens up to select Windows users

Perplexity is planning to open up its Comet browser that's powered by "agentic search" to Windows users, according to the company's CEO. Aravind Srinivas posted on X that the Windows build of Comet is ready and has sent out invites to early testers already. Perplexity's CEO also hinted at a potential release for Android devices, adding that it was "moving at a crazy pace and moving ahead of schedule." In May, Perplexity launched a beta version of its AI-powered Comet browser, only available to Mac users running Apple Silicon. The intelligent browser comes with AI features baked in, like the ability to ask it questions, check shopping carts for discounts and dig up unanswered emails. The beta version even showcases a "Try on" feature where users can upload a photo of themselves and Comet will generate an image of them wearing a selected piece of clothing. There's still no official debut set, but Srinivas previously hinted at an upcoming release in an X post earlier this month. Comet is still only offering a waitlist for those interested, but the browser has already stirred up controversy. The company's CEO previously made comments during a podcast interview that Perplexity would use Comet "to get data even outside the app to better understand you." Srinivas later clarified on X that the comment was taken out of context, adding that "every user will be given the option to not be part of the personalization" when it comes to targeted ads. When Comet is released, the agentic browser will face competition from Opera Neon and similar offerings from Google and OpenAI.

Engadget

18 hours ago

• Engadget

Perplexity's AI-powered browser opens up to select Windows users

Perplexity is planning to open up its Comet browser that's powered by "agentic search" to Windows users, according to the company's CEO. Aravind Srinivas posted on X that the Windows build of Comet is ready and has sent out invites to early testers already. Perplexity's CEO also hinted at a potential release for Android devices, adding that it was "moving at a crazy pace and moving ahead of schedule." In May, Perplexity launched a beta version of its AI-powered Comet browser, only available to Mac users running Apple Silicon. The intelligent browser comes with AI features baked in, like the ability to ask it questions, check shopping carts for discounts and dig up unanswered emails. The beta version even showcases a "Try on" feature where users can upload a photo of themselves and Comet will generate an image of them wearing a selected piece of clothing. There's still no official debut set, but Srinivas previously hinted at an upcoming release in an X post earlier this month. Comet is still only offering a waitlist for those interested, but the browser has already stirred up controversy. The company's CEO previously made comments during a podcast interview that Perplexity would use Comet "to get data even outside the app to better understand you." Srinivas later clarified on X that the comment was taken out of context, adding that "every user will be given the option to not be part of the personalization" when it comes to targeted ads. When Comet is released, the agentic browser will face competition from Opera Neon and similar offerings from Google and OpenAI.