Visualização normal

Antes de ontemStream principal

Fake CAPTCHA Campaign: Inside a Multi-Stage Stealer Assault

✇SpiderLabs Blog
Por:Shabtay Barel · Serhii Melnyk · Rodel Mendrez
19 de Março de 2026, 14:46

This report expands LevelBlue’s ongoing investigation into a multi-stage fileless malware campaign in which a network of compromised legitimate websites redirects victims to fake CAPTCHA verification pages delivering credential-stealing payloads through a ClickFix social engineering mechanism.

How ClickFix Opens the Door to Stealthy StealC Information Stealer

✇SpiderLabs Blog
Por:Rodel Mendrez
12 de Fevereiro de 2026, 14:15

This analysis examines a complete attack chain targeting Windows systems through social engineering using fake CAPTCHA verification pages to trick users into executing PowerShell commands.

❌
❌