New ClickFix Attack Targets Crypto Wallets and 25+ Browsers with Infostealer

Researchers at CyberProof have identified a new fake captcha campaign linked to the ClickFix operation. This stealthy infostealer targets over 25 browsers, cryptocurrency wallets like MetaMask, and gaming accounts by tricking users into executing malicious PowerShell commands.

A new scam is making the rounds online, and it is catching people off guard by mimicking a tool we all use: the CAPTCHA. We have all seen those boxes asking us to prove we are not robots. However, threat hunting experts at CyberProof have found that hackers are now using fake versions of these checks to trick users into infecting their own computers.

Most users, as we know it, trust these verification steps, which is exactly what the attackers are counting on. This research, shared with Hackread.com, indicates the campaign is an evolved version of the ClickFix attacks that targeted restaurant bookings in early 2025.

A Sneaky Multi-Stage Infection

For your ...