According to ESET's recent Threat Report, ClickFix, a deceptive attack method, has seen its prevalence soar by over 500% in the first half of 2025. This surge positions it as the second most common attack vector, surpassed only by phishing, signaling an expanding risk environment for internet users.
The ESET analysis, which surveyed trends from December 2024 through May 2025, determined that ClickFix was responsible for nearly 8% of all thwarted cyberattacks. A frequent tactic employed by this method involves the use of counterfeit reCAPTCHA checks, designed to mislead individuals into pasting and subsequently executing malicious commands.
The significant peril this method presents to online security underscores the critical need for enhanced vigilance and awareness among internet users.