Fake CAPTCHA

Petersl
Petersl Defender of the month ✭✭✭✭
edited April 12 in Scam Busters

Hi everyone,

There's this new scam that infects your devices with malware, this is called "fake CAPTCHA" or "Clipboard Hijacking", source: https://cybersecuritynews.com/fake-captcha/

What happens when you get one of these fake CAPTCHA's? Will this be automatically blocked by bitdefender or will bitdefender give a warning? I assume the bitdefender team is already aware of this new threat and this is already updated in the bitdefender antivirus/firewall?

Tagged:

Comments

  • Bonfire9911
    Bonfire9911
    edited April 18

    I am sure BD already knew about this threat, as it's pretty prevalent. A variant is known as ClickFix.

    A local institution's website was taken over recently and now redirects to multiple malicious pages (I don't know how the pages are selected), including a fake CAPTCHA page. I was stopped by the following security solutions:

    1. uBlock origin list (multiple)
    2. (probably) nextDNS
    3. BitDefender's Traffic light, Norton Safe Web, MalwareBytes' browser guard (testing one at a time).

    For Bitdefender, it just displays a message along the lines of "This is a dangerous (website/page?)..."

    I don't know for sure, but I don't think it's based on a "live" page/****** analysis; it's most likely based on a dynamically updated list of IPs/URLs, as the blocks from the 3 above were all very quick.

  • Flexx
    Flexx mod

    The JavaScript in question has already been detected by Bitdefender, as indicated on the website shared above. Below is the VirusTotal link for reference.

    https://www.virustotal.com/gui/url/a24a868b072121fd9ddeb32a00b213746e34480319e5ac049f9377347b8e9e9c?nocache=1

    Regards

    Life happens, Coffee helps!

    Show your Attitude, when you reach that Altitude!

    Bitdefender Ultimate Security Plus (user)

All Time Leaders

Categories

Defenders of the month - March