Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

LummaC2

Researchers: ClickFix variants use fake Windows Update page and steganography to deliver infostealers

Cybercrime, News, Research, Vulnerabilities

November 25, 2025

Researchers warn that ClickFix attack variants are using a full‑screen fake Windows Update page and steganography in PNG images to hide and deliver infostealer malware, with campaigns employing mshta, PowerShell, a .NET Stego Loader and in‑memory execution techniques.

About
Editorial Policy
Privacy
Contact