ClickFix attack variants have been observed where threat actors trick users with a realistic-looking Windows Update animation in a full-screen browser page and hide the malicious code inside images.

Don't miss out on our latest stories. Add PCMag as a preferred source on Google. A new attack is mimicking a Windows update to try and trick users into executing malicious commands, likely to install ...

The ClickFix campaign disguises malware as legitimate Windows updates, using steganography to hide shellcode in PNG files and bypass security detection systems.

Security researchers from Huntress are warning the public about a new variant of ClickFix, one of the most popular scam methods right now. In this variant, you’re hit with a full-screen browser page ...

December 4, 2025 Add as a preferred source on Google Add as a preferred source on Google The update screen is a normal occurrence on Windows machines, so of course hackers are now manipulating it to ...

This is wild and new. Attackers have worked out that malicious emails pushing links to adult sites will solicit plenty of clicks. Unfortunately, those clicks trigger a fake update that installs ...

The fake update screen then encourages the user to press the Windows button together with the R key—a little-known function to open the run dialog box, a way to launch programs on a Windows PC. All ...

Keeping your software up to date is an important part of protecting your devices from cyberattacks. Earlier this month, major U.S. banks struggled to determine how much data was stolen from customers ...