ClickFix is a sophisticated social engineering technique that exploits trust in CAPTCHA systems to execute malicious commands. It guides users through harmless keystrokes to install malware like infostealers and Qakbot. By relying on user interaction and obfuscation, this method complicates detection by security solutions, making it a challenging threat for defenses. Efforts are ongoing to disrupt its infrastructure.

400+ SAP NetWeaver Devices Vulnerable to 0-Day Attacks that Exploited in the Wild
Shadow Servers have identified 454 vulnerable SAP NetWeaver systems affected by a critical zero-day flaw, CVE-2025-31324, allowing unauthenticated file uploads and potential system compromise. Discovered