Hackers are going after your login information using fake CAPTCHA pages to trick people into installing and running a piece of malware named “StealC”. It grabs information from your saved browser passwords, crypto wallets, Steam accounts, Outlook logins, system information, and screenshots to their own server.
This is a basic CAPTCHA as supplied by reCAPTCHA when entering a website.
But these new fake CAPTCHA attack vectors don’t bring up a bunch of boxes to click, a path to finish, or even just an animal to click.
These are examples of the FAKE CAPTCHA, which have you use simple keyboard shortcuts to simplify the process. It has you paste a powershell script into a Run window, then run the malicious code. It then downloads and runs that code in the background and takes your information.
If you think you’ve been a victim of any kind of attacks or viruses, bring your PC by during our normal hours and we’ll get your PC cleaned out.