TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
View original
The Hacker News avatar

TGINSIGHT POST

Post #8545

@thehackernews

The Hacker News

Views10,400Post view count
PostedMar 603/06/2026, 06:47 AM
Post content

Post content

πŸ›‘ ClickFix has moved to Windows Terminal. Microsoft says victims are told to open wt.exe and paste a command from fake CAPTCHA pages. That launches PowerShell, pulls payloads, and injects Lumma Stealer into Chrome and Edge to steal saved credentials. πŸ”— Read β†’ https://thehackernews.com/2026/03/microsoft-reveals-clickfix-campaign.html