In February, Microsoft reported a significant criminal attack campaign that misleads victims into running malicious code on their devices. This attack represents a new and upgraded version of the ClickFix campaign observed back in 2024. Users are at risk particularly when requested to open a Windows Terminal, a tool that can execute harmful commands, leading to the infection of the computer with malware known as Luma.

The attack typically initiates through a false captcha request displayed on certain websites, designed to distinguish a human from a machine. Accompanying this captcha is a treacherous instruction encouraging users to copy and execute a dangerous command on their computers. Failure to recognize this threat could result in compromising personal data or systems, as the attack is cleverly disguised to seem like a legitimate process.

Microsoft emphasizes the importance of user awareness in these scenarios, advising individuals to refrain from engaging with suspicious prompts. As cyber threats continuously evolve, maintaining vigilance against such deceptive tactics is crucial to safeguard personal and organizational cybersecurity.