ClickFix may be the biggest security threat your family has never heard of

Scammers are increasingly using a method called ClickFix to infect computers, targeting both macOS and Windows users. This technique often starts with an email, WhatsApp message, or a URL from a Google search result that prompts the user to enter a string of text into their terminal, leading to the automatic download and installation of malware without the user's knowledge. Security firms warn that ClickFix campaigns are widespread due to their ability to bypass some endpoint protections and the lack of awareness among users. One recent campaign aimed at Mac users involved the distribution of a credential-stealing malware called Shamos, along with other malicious payloads.