Protecting Against ClickFix Phishing Scam

Beware of "ClickFix" scams—malicious pop-ups or emails that trick you into clicking links to install malware or steal data. These often disguise themselves as tech support, software updates, or CAPTCHA verifications. To stay safe: 

·         Don’t click suspicious links or pop-ups. Use Task Manager to close them safely. 

·         Verify sources. Only download from trusted sites like www.microsoft.com or www.apple.com.

·         Report incidents. Contact the Help Desk (ITSHelpDesk@fairfield.edu) immediately if you suspect a ClickFix attempt. 

Here’s what to watch for (examples from Krebs on Security): 

·         Fake CAPTCHA Pop-up: A prompt like “I’m not a robot” may ask you to press keys (e.g., Windows + R) and paste a command, downloading malware. 

·         HTML Attachments: Files named “Report_” or “scan_doc_” might mimic Microsoft Office but actually contain malicious scripts. 

Learn more: 

• Krebs on Security: https://krebsonsecurity.com/2025/03/clickfix-how-to-infect-your-pc-in-three-easy-steps/#more-70700    
• Federal Trade Commission: www.ftc.gov/clickfix-scams   
• Cybersecurity & Infrastructure Security Agency: www.cisa.gov/protecting-malware   
• StaySafeOnline: www.staysafeonline.org/clickfix-awareness   

Thank  you for staying vigilant to keep Fairfield U secure! 

Information Technology Services Department