Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

Fake Google Meet Errors Spread Info-Stealers

October 18, 2024
Reading Time: 2 mins read
in Alerts
Fake Google Meet Errors Spread Info-Stealers

A new ClickFix campaign is exploiting fake Google Meet connectivity errors to distribute info-stealing malware targeting both Windows and macOS systems. This social-engineering tactic, first reported by cybersecurity firm Proofpoint in May, involves the threat actor TA571 sending phishing emails that mimic legitimate Google Meet invitations. These fraudulent emails entice victims to click on links leading to counterfeit Google Meet pages, where they are confronted with fake error messages about microphone or headset issues, creating a sense of urgency to resolve the problem. This manipulation effectively preys on users’ trust in widely-used platforms, particularly in corporate environments where Google Meet is a standard tool for virtual meetings and collaboration.

Once victims are on the fraudulent page, they encounter a pop-up suggesting they click “Try Fix” to address the connectivity issue. This action triggers the ClickFix infection process, where victims are prompted to copy PowerShell code that they are instructed to run in the Windows Command Prompt. Executing this code results in the download and installation of various types of malware, including DarkGate, Matanbuchus, NetSupport, Amadey Loader, and AMOS Stealer. These malware variants are designed to steal sensitive information, establish remote access, and facilitate further exploitation of the victim’s system, leading to severe data breaches and compromises.

Recent reports from cybersecurity provider Sekoia indicate that ClickFix campaigns have evolved significantly, expanding their tactics to include not only Google Meet but also platforms like Zoom, PDF readers, fake video games, and messaging applications. The URLs used in these attacks closely resemble legitimate Google Meet links, such as meet[.]google[.]us-join[.]com and meet[.]google[.]web-join[.]com, making it increasingly difficult for users to identify the fraudulent pages. The increasing frequency of these campaigns, particularly in regions like the United States and Japan, highlights the urgent need for heightened awareness and vigilance among users regarding phishing attempts. In July, McAfee reported that ClickFix campaigns were becoming more prevalent, reinforcing the critical nature of cybersecurity awareness in today’s digital landscape.

As cybercriminal tactics become more sophisticated, individuals and organizations must prioritize cybersecurity awareness training and adopt proactive measures to defend against such threats. This includes implementing robust email filtering solutions to catch suspicious messages, educating employees about the dangers of unsolicited links, and encouraging users to verify meeting invitations through official channels. Additionally, organizations should consider deploying endpoint protection solutions capable of detecting and neutralizing malware threats before they can inflict damage. By staying informed and vigilant, users can better protect themselves against the growing threat of info-stealing malware campaigns like ClickFix, ensuring a more secure digital environment for everyone.

Reference:
  • Fake Google Meet Errors Lure Users to Download Info-Stealing Malware Campaigns
Tags: ClickFixCyber AlertsCyber Alerts 2024Cyber threatsGoogleGoogle MeetMacOSOctober 2024ProofpointTA571Windows
ADVERTISEMENT

Related Posts

FreeDrain Phishing Steals Crypto Funds

FBI Warns Cybercriminals Exploit Routers

May 9, 2025
FreeDrain Phishing Steals Crypto Funds

X Scam Targets Crypto Users with Fake Ads

May 9, 2025
FreeDrain Phishing Steals Crypto Funds

FreeDrain Phishing Steals Crypto Funds

May 9, 2025
COLDRIVER Hackers Target Sensitive Data

COLDRIVER Hackers Target Sensitive Data

May 8, 2025
COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

May 8, 2025
COLDRIVER Hackers Target Sensitive Data

CoGUI Targets Consumer and Finance Brands

May 8, 2025

Latest Alerts

X Scam Targets Crypto Users with Fake Ads

FBI Warns Cybercriminals Exploit Routers

FreeDrain Phishing Steals Crypto Funds

CoGUI Targets Consumer and Finance Brands

COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

Subscribe to our newsletter

    Latest Incidents

    LockBit Ransomware Data Leaked After Hack

    Spanish Consumer Group Faces Cyberattack

    Education Giant Pearson Hit by Data Breach

    Masimo Cyberattack Disrupts Manufacturing

    Cyberattack Targets Tepotzotlán Facebook

    West Lothian Schools Hit by Ransomware

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial