External Publication
Visit Post

ClickFix Campaign Uses EtherHiding and GULoader to Target Windows Users With Fake CAPTCHA Pages

VPN Central [Unofficial] June 18, 2026
Source
A new ClickFix campaign is targeting Windows users through compromised WordPress sites, fake CAPTCHA prompts, blockchain-hosted payload delivery, and a remote GULoader infection attempt. The attack does not begin with a phishing email. In the case analyzed by Sicuranext, the victim reached a legitimate European small-business website through Google Search. The site looked normal. Product […] The post ClickFix Campaign Uses EtherHiding and GULoader to Target Windows Users With Fake CAPTCHA Pages appeared first on VPN Central.

Discussion in the ATmosphere

Loading comments...