A persistent malware campaign is exploiting CAPTCHA prompts to steal data from victims. The scheme relies on users not questioning the steps in a CAPTCHA prompt. Users are directed to a website offering attractive content, such as music or movies. A CAPTCHA prompt asks them to prove they are not a robot, and if they follow the steps, the website copies a text string to their clipboard. This allows hackers to download and install malware, which can then steal sensitive data.
26 million devices are infected by malware that steals bank card data including passwords
A malware attack targeted 25 million device users in 2023 and 2024, stealing sensitive data including bank card numbers and passwords. Kaspersky estimates that 2.3
