fake CAPTCHAs Archives

Winsage

January 7, 2026

Hackers Use Fake Windows BSOD To Spread Malware

Security researchers have identified a social engineering campaign that mimics the Windows Blue Screen of Death (BSOD) to deceive users into installing a remote access Trojan (RAT). The campaign, named PHALT#BLYX, begins with phishing emails that appear to be legitimate cancellation notices from travel websites, leading victims to a fake login page and an interactive CAPTCHA. This culminates in a full-screen imitation of the BSOD, prompting users to follow instructions that ultimately allow attackers to gain control of their computers. The attackers use a “ClickFix” process that involves executing commands through native Windows tools like PowerShell and MSBuild, making detection more challenging. The malware delivered is an obfuscated version of DCRat, which provides attackers with remote control capabilities, keylogging, and the ability to download additional malware. The campaign primarily targets hotels and hospitality businesses in Europe, exploiting the urgency of front-desk staff to respond to apparent technical issues. Indicators of a fake BSOD include the ability to interact with the screen, requests to execute commands via Windows tools, and the presence of CAPTCHA prompts. Organizations are advised to train employees, implement application control, enhance email and web defenses, and prepare for incident response to mitigate risks associated with such attacks.

Winsage

November 26, 2025

Do Not Click—This Porn Site Installs Malware On Your Device

Attackers are using malicious emails with links to adult websites to exploit human curiosity and urgency, leading to the installation of harmful malware through deceptive update processes. Acronis has identified these "JackFix" attacks, which use screen hijacking techniques combined with ClickFix methods, presenting victims with fake Windows Update screens that claim to deliver critical security updates. This campaign leverages counterfeit adult websites as phishing mechanisms, increasing psychological pressure on victims to comply with prompts to install updates. The attack takes over the victim's screen and displays a convincing update interface, occurring entirely within the browser. Acronis advises users to avoid accessing adult sites through links in emails or messages and to navigate directly to these sites for safer browsing.

Winsage

August 23, 2025

Microsoft Warns All Windows Users—This Message Is An Attack

Microsoft has issued an advisory warning Windows and macOS users about a wave of attacks known as ClickFix, which targets enterprise and end-user devices globally. ClickFix is a sophisticated social engineering tactic that deceives users into executing malicious scripts on their devices, leading to malware installation, information theft, and potential ransomware attacks. The attacks often begin with deceptive technical support popups or fake Captchas that instruct users to run commands in systems like Windows PowerShell. ClickFix relies on human intervention, allowing it to bypass traditional security measures. Microsoft emphasizes the importance of user education to recognize these threats and reduce vulnerability, as well as implementing policies to strengthen device configurations.

Winsage

September 21, 2024

New Microsoft Windows Warning—You Must Never Do This On Your PC

A global cyber attack is targeting Windows users, particularly those on Windows 10, as they approach a period without security updates. The campaign involves fraudulent CAPTCHA popups designed to distribute Lumma Stealer malware. Users are tricked into clicking buttons that prompt them to paste a PowerShell script, which then executes a malicious EXE file. McAfee researchers have issued an alert about these deceptive tactics, which target individuals downloading pirated games and software developers through phishing emails. The ClickFix infection chain exploits common user behaviors, leading to the installation of malware. Users are advised to be cautious and avoid executing commands from within CAPTCHAs. As Windows 10 support ends in October 2024, users may need to consider upgrading to Windows 11 for continued security.