ClickFix
Malicious
Malware
Aliases: ClearFake
Description
ClickFix, also known as ClearFake, is a fake browser update malware that is distributed through malicious WordPress plugins. These plugins inject JavaScript into websites, which then displays fake browser update prompts to visitors. The malware leverages social engineering to trick users into downloading and executing malicious payloads, such as remote access trojans and information stealers like Vidar and Lumma. ClickFix has been observed in the wild since 2023 and is often spread through compromised websites with stolen administrator credentials.
Targets
- Windows
- Website visitors
Domains
57140
IPv4 Addresses
246
Strings
25
Last updated 2026-04-08T18:56:36Z
View DNS history, indicators, and additional details with a free community account.
Use your professional email to create your Validin community account.
Already have an account? Sign in