Fake CAPTCHA Runs Malware

Поделиться
HTML-код
  • Опубликовано: 9 ноя 2024

Комментарии • 252

  • @logoninternet
    @logoninternet Месяц назад +349

    I could definitely see people falling for this. The fatigue among users encountering captchas is real. That's what this relies on.

    • @ardwetha
      @ardwetha Месяц назад +30

      Let's be real. Elderly people or most of the boomer generation will fall for this and probably some of the younger people, without IT or security background would also.

    • @TessaBain
      @TessaBain Месяц назад

      You're right, but you're technically also wrong. Yes, people are tired of it, but that would actually mean less people would likely fall for it.
      Apparently when you're tired of something, you go ahead and interact with it more for some reason, but normal people do not.
      They see the thing and they immediately disengage.
      I, for example, have closed thousands of pages when I saw a captcha and simply couldn't be bothered because it wasn't important enough.
      I am very fatigued of them and therefore stop interacting with not just pages but even whole sites that want me to do even one.
      Because I am tired of them, not only will I not do their captcha, I will never use their site again if I suspect I will be forced to do so to get what I wanted out of them in the first place.
      You've also clearly never dealt in much YGO if you think that people don't immediately forfeit when seeing their opponent slap down a card from decks they're tired of seeing.
      Something that happens because fatigue = disengagement.

    • @brbl415
      @brbl415 Месяц назад +13

      @@ardwetha Yeah especially if you offer them free roblox

    • @balsalmalberto8086
      @balsalmalberto8086 Месяц назад +6

      The crazy thing is this type social engineering attack bypasses browser sandboxing (browser can't launch executables on the host).. pretty ingenuous but scary stuff. All the more reason it's essential to use ad-blocking software.

    • @MichaelOfRohan
      @MichaelOfRohan Месяц назад

      Yeah if youre based pirating shit at your grandmas house lol.
      Nobody who has a job is falling for that shit.

  • @jimkats1
    @jimkats1 Месяц назад +20

    Unfortunately even the simplest and dumbest trick works for most of the average users, and that's why they keep appearing. Under circumstances, even the most careful may fall for it.
    Thank you for this video of analyzing the situation (and to everyone else of course who did the research and spread awareness about it).

  • @samuelbudzinak
    @samuelbudzinak Месяц назад +63

    It's evil genius
    I know A LOT of people, who would fall for it

  • @siomek101
    @siomek101 Месяц назад +177

    its very clever if you think about it. "techy" people would not fall for it, but normal people, would probably fall for it

    • @MrNaesme
      @MrNaesme Месяц назад +35

      Even a techy person could fall for it if they're just going through the motions. Never underestimate just how much you've been programmed to follow along with random bullshit processes.

    • @care-m7k
      @care-m7k Месяц назад +13

      Linus tech tips falls for it

    • @truthboom
      @truthboom Месяц назад +13

      @@MrNaesme hold alt f4 to check if there's malware

    • @WillyJL
      @WillyJL Месяц назад

      people constantly fall for discord login scams and pollute servers with more bot scams, i could see a fake captcha being even more effective than those

    • @HenkGootjes66
      @HenkGootjes66 Месяц назад +9

      Ty that worked ​@@truthboom

  • @DS-sm3nu
    @DS-sm3nu Месяц назад +104

    Any child offered vbucks, roblox, etc, playing on their parents/family computer would absolutely fall for this

    • @MadsterV
      @MadsterV Месяц назад +1

      that's what account systems are for
      Don't make toddlers your sysadmin

  • @25rf
    @25rf Месяц назад +102

    seems stupid but the sad part is it works very well for your average user

    • @DaweSMF
      @DaweSMF Месяц назад +5

      Maybe because your average user isnt usualy computer enthusiast and have computer as "necessary evil". Usualy as workstation or machine for home use, to play movies and download porn. The technology goes forward so quick even professionals have "heads full" and often dont see the obvious. Lack of time is general issue and if you have deadlines and for example also staff shortage, you will fall for even more stupid things. Thats why there are ICT departments in companies.

    • @MichaelOfRohan
      @MichaelOfRohan Месяц назад

      Said an apple user....

  • @TUXbeatDOWN
    @TUXbeatDOWN Месяц назад +14

    The one John made, I feel, would trick so many people... Much more than the attacker's version shown before that.

  • @surya_11
    @surya_11 Месяц назад +40

    John Hammond when he sees an Western name like Arnold Schwarzenegger: "That's too easy!"
    Also John Hammond when he sees basically a four-letter non-Western name: "I'm sorry, I quit."

    • @_Yassir_
      @_Yassir_ Месяц назад +8

      Schwarze WHAT

    • @keulron2290
      @keulron2290 Месяц назад

      To be fair, non western names are generally much harder to pronounce for native English speakers.

  • @xXstevilleXx
    @xXstevilleXx Месяц назад +2

    John, thanks for this. I am doing a write up so to speak on captchas. Mainly because many people who are just users do not know the dangers. Besides the dangers, with AI, these are useless and verification is so much more complicated than I at first assumed. Heck as we speak those working on countering this and find better ways are still finding ways that are better than what they roll-out almost daily, doing a great job for sure but for this I have not quite seen as much research being done. Any rate long story short, much appreciated.

  • @SzaboB33
    @SzaboB33 Месяц назад +17

    This is the biggest "facepalm" foothold I have seen in 2024

  • @erocme
    @erocme Месяц назад +3

    This is great😂 I don’t want to be the analyst that has to work up a solution to prevent clients from using the clipboard to evade the browser sandbox. Seriously, always interesting. Also thanks for sharing some of the other examples and writeups showing how our users fall victim to these payloads 🔥🔥

    • @AntiAtheismIsUnstoppable
      @AntiAtheismIsUnstoppable Месяц назад

      No, but, shouldn't there be a warning when you copy/paste into the terminal, it did that in my old linux system?
      Look, when you open web developer tools, there is warning because this is used by scammers to fool non tech people, so why is it not obvious, that anything else where the user is copy/pasting into a field which has connection to terminal, then there should be a warning, preferebly a confirmation via UAC?
      When you download a file from the internet, it has certain restricted rights, same should be the case with anything copied from a web site into a terminal or system form field.

  • @lourenssianturi4373
    @lourenssianturi4373 День назад

    Thank you for sharing. I just read this from the news and it freaks me out.
    Gladly, it is just so obvious that it is a mallware.

  • @AstralArchivists
    @AstralArchivists Месяц назад +17

    I got a John Hammond ad ln this video haha

  • @diobrando5334
    @diobrando5334 Месяц назад +23

    I DON'T BELIEVE IT ... I JUST SAW IT YESTERDAY AND ALMOST FELL FOR IT!!!

    • @MekelachiChijioke
      @MekelachiChijioke Месяц назад

      me too but when they said Crtl + V i knew something was fishy so why not hack the hackers site

    • @iamyourgreatgreatgreatgrea6291
      @iamyourgreatgreatgreatgrea6291 Месяц назад +2

      Thank god you didn't provide any info about where you saw it, truly helps people so they don't encounter it.

    • @diobrando5334
      @diobrando5334 Месяц назад

      @@iamyourgreatgreatgreatgrea6291 it was on a pirating website so ... not risking that the website to go down + why tf do u want the website if you know how the hack work?

    • @TessaBain
      @TessaBain Месяц назад +3

      Never seen this one but just opening something on the computer itself is fishy.
      Once you get to the fact that they want you to paste something, it immediately tells you they copied something to your clipboard when you pressed the button.
      I can see clicking it (they're constantly changing these systems around for no reason, so the fact that it looks a little different isn't necessarily weird) but the first is just an immediate red flag and the second is a giant rainbow kaleidescope flag unless you don't know copy and paste.

    • @1c2-w1h
      @1c2-w1h 13 дней назад

      i fell for it today bruh i didnt even notice it because i was multi tasking

  • @munshidomain
    @munshidomain Месяц назад +6

    New fear unlocked.
    Guess I am declaring myself as ROBOT.

  • @Iron_Condorr
    @Iron_Condorr Месяц назад +6

    I posted about the potential for this on Reddit years ago, and no joke was met with so much toxic/know it all replies that i deleted the post. "I told you so" is never a response i want to give in relation to malware.

  • @mybachhertzbaud3074
    @mybachhertzbaud3074 Месяц назад +11

    The more complex things get, the easier simple weapons seem to work.🤔

  • @orderandchaos_at_work
    @orderandchaos_at_work Месяц назад +27

    You'd have to be a robot to complete those steps.

    • @Krullfath
      @Krullfath Месяц назад +3

      That's so funny

    • @ShortBusRejectz
      @ShortBusRejectz Месяц назад +5

      Old people exist. Unfortunately, they are the most targeted

    • @Krullfath
      @Krullfath Месяц назад +3

      @@ShortBusRejectz Calling old people robots now?

    • @tsuketsu9889
      @tsuketsu9889 Месяц назад +8

      Tech illiterate people exist, and are more common than you think.

    • @reefhound9902
      @reefhound9902 Месяц назад

      @@tsuketsu9889 You don't have to be tech literate to Just Say No. No to clicking any links or buttons in email. No to giving personal info over the phone (or even answering a call). No to running commands. No to doing anything asked that is unusual. In fact I would think being tech illiterate should make it easier. If you don't understand it, don't do it. If in doubt, don't do it.

  • @martinbaran7570
    @martinbaran7570 Месяц назад +3

    i'm starting to think the analyst they are referring to may be me !, I had responded to this exact looking incident with the same IOC'S but I knew the user manually ran this powershell as I could see it in the logs the question was why and how and where did they get the this encoded command. did some digging and came across unusual amounts of redirects and yep came across the download step domain with a fake captcha getting the user to open the run window and paste in the command. very simple but clearly effective.

  • @barronvonnoodle
    @barronvonnoodle Месяц назад +2

    Watching a John Hammond and then i get an ad from John Hammond. Now that's marketing at work

  • @test-rj2vl
    @test-rj2vl Месяц назад +5

    We need to make Win + R to require you to type "allow pasting" for first time like browser dev tools does. Normies would get stuck behind skill issue.

    • @AlfiesFuntime
      @AlfiesFuntime Месяц назад +5

      They'll just add: Type "allow pasting"

  • @logiciananimal
    @logiciananimal Месяц назад +1

    You're right about that use of copy - I encountered in a pentest I did a few months ago.

    • @AntiAtheismIsUnstoppable
      @AntiAtheismIsUnstoppable Месяц назад +1

      I use the old fashioned copy style on my web site because the new is way too advanced, and the old one works, and I assume will also work for a very long time for backwards compatibility. But it's not the browsers fault and not javascripts fault either, it is a security flaw in the OS, that data from an unsafe area is not validated before execution. It's very clever, because it is not directly obvious that it is a security flaw, but it is.

  • @jonnyfatboy7563
    @jonnyfatboy7563 Месяц назад +1

    funnily enough my add before this video started was john Hammond talking about deadsec 😅 very cool

  • @JPerridew
    @JPerridew Месяц назад

    I love this, and I know people at work who would have followed along without thought.

  • @Nycto97
    @Nycto97 Месяц назад +1

    Oh God, as soon as I saw the "Verification Steps"... Like others are saying in the comments, most of us know immediately something fishy is going on, but my mom, dad, grandmother etc would all just follow those steps blindly, not knowing what Win+R does or opens, not knowing they're about to paste something that's been set on their clipboard,... It's so scummy from these bad actors, they know exactly that most people have no clue what all of this means. It's so sad, and I feel sorry for every victim. They're paying the price just for not being familiar enough with these things.

  • @kev2020-z9s
    @kev2020-z9s Месяц назад +1

    Thank you for this I run linux (not trying to sound better just use linux as I am on an old pc)still interesting to see what people are trying.

  • @benediktussava
    @benediktussava Месяц назад +3

    greetings from the Ethical Hacking Indonesia community John !

  • @mattcargile
    @mattcargile Месяц назад

    Great breadcrumb on the run dialog. Didn’t know that. 🎉

  • @HolyAdilokGames
    @HolyAdilokGames Месяц назад

    First.. i remember when this video was posted 10 mins ago.. I'm at 12:10. Love the begining and the sponsor of this very video.

  • @Splarkszter
    @Splarkszter Месяц назад +23

    Why are encoded commands allowed in the first place?

    • @Entropy67
      @Entropy67 Месяц назад

      Probably because its useful depending on what you want your app to do

    • @muizzsiddique
      @muizzsiddique Месяц назад +5

      Probably a way to deal with horrendously nested quote marks, so you don't have to add nested escape characters.

    • @H3cJP
      @H3cJP Месяц назад +6

      because encoded commands are actually used
      i use it sometimes, a b64 encoded string, instead of dealing with the crazyness of quote marks
      but yeah would be better if that gets blocked from being runned by the "run" thing, it is useful but i think it should be limited to running from console or as a command runned by a program

    • @H3cJP
      @H3cJP Месяц назад

      to be clear i used once b64 but it was just for something that i wasnt going to publish, bad idea for shared work imo

    • @Splarkszter
      @Splarkszter Месяц назад

      But why on Normie computers that should never need to touch CMD?

  • @BigManLou_TheRealOne
    @BigManLou_TheRealOne 29 дней назад +1

    just came across this website and found this video.
    its back up now

  • @Linda-n7v
    @Linda-n7v Месяц назад

    This video shined a light on questions I had. ty
    Am, I the only one who still now and then, wonders how people's boredom keeps turning...well ugly
    😐 😒 🙄 😑

  • @rozansanuraalbary2944
    @rozansanuraalbary2944 Месяц назад

    that powershell bloked by EDR in my office. i dont expect that the cyber attack happens in many places

  • @tanmay8952
    @tanmay8952 Месяц назад +1

    woah thanks for sharing

  • @owlenderg
    @owlenderg Месяц назад

    Surprised this wasn't a thing earlier

  • @BrickTamlandOfficial
    @BrickTamlandOfficial Месяц назад +3

    is there any way to disable the base64 decoding in powershell commands?

  • @zenginellc
    @zenginellc Месяц назад

    It's better for people to know even the more simple methods so they don't get overlooked.

  • @asf130thecompany7
    @asf130thecompany7 Месяц назад

    These longer videos for me are ok due to somewhat intresting topics you cover but that's just me ^^

  • @theepicslayer7sss101
    @theepicslayer7sss101 Месяц назад +1

    glad there is a barrier between for it to work... if it were the exact same looking captcha AND only need to click, that would be a nightmare! also, i got your DevSecCon 2024 ad on your video around the 9 minutes mark lol, not sure if you pay your self and have 0 gains or a net loss... still was funny seeing your ad playing over your ad!

  • @Capiosus
    @Capiosus Месяц назад +3

    clipboard history should be a web permission denied by default.

  • @an3ssh
    @an3ssh Месяц назад

    that JS code looks like something that I'd write. Plain SIMPLE!!!

  • @Vacuum_Tube
    @Vacuum_Tube Месяц назад

    Wtf i just got an ad with you in it on your video, thought i was trippin for a sec.

  • @Illogical.
    @Illogical. Месяц назад

    I got an ad while watching this. You were in the ad.

  • @LeeZhiWei8219
    @LeeZhiWei8219 Месяц назад

    I got a John Hammond snyk ad, on a John Hammond video 😂

  • @Zero11_ss
    @Zero11_ss Месяц назад +3

    His hair is like a delicious croissant

  • @vitaliwilhelm7654
    @vitaliwilhelm7654 Месяц назад

    Wow, had a John Hammond Ad on a John Hammond Video 🤣🤣🤣

  • @vaibhav3852
    @vaibhav3852 Месяц назад

    i love clever dynamic testing, but dont like dynamic testing to avoid or get a head start in static testing of malware

  • @sessionmeditationclub-heal4153
    @sessionmeditationclub-heal4153 20 дней назад

    Bravo!!! But !! I haven't understand bro, there is a lot of high tec information too much to understand, well congratulations that you know too much, but did we got infected finally? is it dangerous ? should I format my pc and keep my data safe on an hdd? what should we do from the moment we did dropped in that f.trap. :)

  • @vaibhav3852
    @vaibhav3852 Месяц назад +1

    Please make more complex reverse enginnering malware videos. maybe show how to do analysis on exe files

  • @KLEOPATTRAALTHANI
    @KLEOPATTRAALTHANI Месяц назад

    Generall you are getting the BAG 🏦🏦🏦😤🙏♥️

  • @Sypaka
    @Sypaka Месяц назад

    The fact they have to do this, is desperate. Problem: Everytime they "invent" a new vector, it's easier to detect them. That multistage-obfuscation is just hilarious.

  • @dravenlee4664
    @dravenlee4664 19 дней назад

    i fell for this the first time i saw it, now i know

  • @AidensheriffVR
    @AidensheriffVR Месяц назад

    DUDE I JUST SAW YOU ON A AD TALKING ABOUT A SAFE SOMETHING IDK I FORGOT

  • @ThatLinuxDude
    @ThatLinuxDude Месяц назад

    Kinda off topic, but now you point out the Run command order key, it makes me wonder why Microsoft didn't just store the command history as a MULTI_SZ - worried about size limit maybe?

  • @vadiks20032
    @vadiks20032 Месяц назад +10

    i appreciate your videos, but judging by video title, i thought its some brand new 0 day drive-by on a click exploit, but all it is, is yet another social engineering hack where you have to do stupid things to win stupid prizes. have you ever showcased drive by exploits though? if there are any, in 2024

    • @ronpaul9172
      @ronpaul9172 Месяц назад

      There are plenty. I have quite a few.

    • @balsalmalberto8086
      @balsalmalberto8086 Месяц назад

      @@ronpaul9172 "I was busy hoarding computer virus samples while you were out honing your social skills and living a normy life"

    • @vadiks20032
      @vadiks20032 Месяц назад

      @@ronpaul9172 a video with showcasing one would be fun

  • @jrnvnjk
    @jrnvnjk Месяц назад

    Fun fact: The user click on the capcha is required for some browser fearures like going to fullscreen or using clipboard. When it's done in the "contructor" it just throws an error.

  • @myentertainment55
    @myentertainment55 Месяц назад

    As windows admin windows+R is immediate and final red flag I would need to nope from that site, but for not powerusers it is quite smart way .
    Anoter reminder to not use your windows pc with admin priveledges. Have good password on your admin account stored somewhere secure in few safe places digitally or physically (not your notepad or word file without any encription)

  • @cameronrich2536
    @cameronrich2536 Месяц назад +1

    Neofetch im looking at you

  • @raihanrafi3665
    @raihanrafi3665 Месяц назад

    11:34 jai minton with JH low quality face. Lol😅😅

  • @technikschaf1574
    @technikschaf1574 Месяц назад

    Oh the irony of hitting Enter being the action that allows the malware to enter your PC.

  • @Revoic
    @Revoic Месяц назад

    I was sus when i saw this captcha and i would have fallen for it, if I was not little educated on some technical stuff, so I googled and here you go found this video.

  • @subarutendou
    @subarutendou Месяц назад +1

    I will click 10 times or verify 10 times because the CAPTCHA loop infinitely then I will block the website from my search engine results. And for me recently some website will jump to a separate page that just have CAPTCHA in the page so if it happens I will not able to tell if that is a fake site or not because the website is show in the search result.

  • @andrewbarth8157
    @andrewbarth8157 Месяц назад +7

    Sorry to be cynical, but really not an interesting attack vector. John admits this multiple times, and I waited for more to come out of it, but there really wasn't any more substance to it. The Twitter (and RUclips) comments saying this would fool people are largely missing the point. It's a social engineering technique that has the same motivation that MFA fatigue attacks do, this is not anything new. Appreciate the attempt to give it some relevance by trying to make it more convincing. Also, kinda odd to review the .md file to us in the text editor.

  • @tholo86
    @tholo86 12 дней назад

    I fell for it. I thought its just another innocent way of captcha. Now my PC is offline

  • @mintoo2cool
    @mintoo2cool Месяц назад

    lol. hate to admit it .. if i accidentally ran into this at the end of the week .. another time when i m feeling tired .. i’d probably fall for it.
    i know people who would fall for it .. simply because there are captcha variations that ask you interact via keyboard as proof.

  • @Bashiroo
    @Bashiroo Месяц назад

    Getting into this video, I was genuinely wondering "are we really talking about the fake captcha that asks for notifications and spam you with ads?"

  • @Bubblessss420
    @Bubblessss420 Месяц назад

    I just met this today… one of our user ran that code… luckily the file instantly got erased by av.

  • @memetech-
    @memetech- Месяц назад +1

    2:41 You know it's fake when it downloads an EXE and says "run this to prove you're human"

  • @Pointless-Point
    @Pointless-Point Месяц назад +1

    And another power-user feature about to be removed...

  • @anthonybf2
    @anthonybf2 Месяц назад

    I started to refuse to do captchas about a year ago for anything except banking or government services. I just click off and find what I need elsewhere. Seeing malware delivered via captcha just reinforces my decision.

  • @Nqe-m6h
    @Nqe-m6h Месяц назад

    Sir can you give us roadmap for beginner to advance and also the courses that contain things bcz I am also new and faced difficulties about roadmap

  • @iuhere
    @iuhere Месяц назад

    Dumber is more effective. I sniff convenience winning over.

  • @GeneralPurposeVehicl
    @GeneralPurposeVehicl Месяц назад

    Your version is even more scary, as it just looks like a coding magic trick.

  • @Sourpusscandy
    @Sourpusscandy Месяц назад +5

    Just another reason I HATE CAPTCHA BS!

    • @AntiAtheismIsUnstoppable
      @AntiAtheismIsUnstoppable Месяц назад

      It's not the CAPTHAs fault, actually, it is a security flaw in the OS, not an obvious flaw I admit, but it is a violation of good security practice, when data which is coming from an unsafe area and then moved into the system area for execution is not verified by the user. The same is true when you download an executable from the internet, which is unsafe by defasult, again when you run that executable the user should be asked for verification by UAC.

    • @balsalmalberto8086
      @balsalmalberto8086 Месяц назад +1

      I hate the internet. I wish I never got into computers lol.

  • @balsalmalberto8086
    @balsalmalberto8086 Месяц назад

    Why does shell support base64 on the command line? hell... why does Microsoft still hide file extensions by default? ohhh I see they implemented bash piping in windows and it's enabled by default ... The security team at micrsoft is doing wonders.

  • @HexOptimal
    @HexOptimal Месяц назад

    lol I was expecting a drive-by zero-day wth is this 😆

  • @MikaelaExtra
    @MikaelaExtra Месяц назад

    MY EYES!

  • @Wynterest
    @Wynterest Месяц назад

    i can see even people that have decent knowledge on how to avoid malware and all that stuff falling for this since you have to have alot more knowledge about malware and all that stuff to know instantly what this does somewhat so you know its malware

  • @achmadrisman9864
    @achmadrisman9864 Месяц назад +1

    Hei im a newbie and i think got infected this malware, how to disable and erase the malware? thankyou!

  • @popowskie
    @popowskie Месяц назад +2

    What to do after being infected?

    • @tanvirahmed5372
      @tanvirahmed5372 19 дней назад

      Resetting my PC did the trick for me. I kept my personal files

  • @rikschaaf
    @rikschaaf Месяц назад +1

    Can't a hacker just delete that registry key to not leave any trace?

  • @NickDoddTV
    @NickDoddTV Месяц назад

    Someone needs to show this video to lenard at LTT 😂

  • @eduardoperme8982
    @eduardoperme8982 Месяц назад

    What is the interactive sandbox program used?
    Any-?

  • @GG-Game-Guardien
    @GG-Game-Guardien Месяц назад

    Your answer is my mom would fall for that

  • @omarjokr1153
    @omarjokr1153 Месяц назад

    so cool

  • @TessaBain
    @TessaBain Месяц назад

    This mostly seems pretty pointless. Anyone who doesn't at least have the basics of tech are probably not going to want to do "whatever that means" as far as they're concerned and anyone who is online even a moderate amount in general are probably too tired of seeing these things to bother.
    You don't need any amount of tech savvy to be tired of seeing captchas at which point you just close the page.
    In an ironic twist of security events, the vast majority of people who might see these, are probably going to be protected by, essentially, simple laziness, lol.

  • @TheTubejunky
    @TheTubejunky Месяц назад +1

    Be careful of those MINECRAFT VOTER LINKS

  • @יובלהרמן-ח2ד
    @יובלהרמן-ח2ד Месяц назад

    Will anyone fall for that? Well... for my mom to use the computer, I had to make shortcuts to all the sites she uses on her desktop.
    It took her like a week to understand that when she clicks another link it opens a new tab and not closes the other site. When one time by mistake she opened a new tab and it launched a Google search page, she couldn't understand what happend and just wasn't able to use the computer until I came and "fixed it".
    She is "just" 50.
    Yeah. I'd say she would fall for that if she could figure out what the windows key is.

  • @silvioprudentino5381
    @silvioprudentino5381 13 дней назад

    If I click only on the blue indication and open menu I take virus or I'm OK?

  • @rtdev8512
    @rtdev8512 Месяц назад

    if the malware run automaticaly when you click captcha, then it will be a serious problem, BUT if it runs AFTER you copying some nosense code to your runtime, then, what kind of person would do that?

    • @fred-youtube
      @fred-youtube Месяц назад

      Your grandma would do that. She has no idea that what she's doing is wrong. Infact she most probably doesn't even know what "powershell" and "base64" even mean.

  • @Divyv520
    @Divyv520 Месяц назад

    Hey John , very good video ! I was wondering if I can help you with more Quality Editing in your videos and make Highly Engaging Thumbnails which will help your videos to get more views and engagement . Please let me know what do you think ?

  • @micalen
    @micalen 29 дней назад +1

    I fell for it because I´m a dumdum, how do I fix it?

  • @benisapp155
    @benisapp155 Месяц назад

    Good stuff, i recently had the same attack. My only thought at that time was this really old obvious. This was on a porn site.

  • @tntomega
    @tntomega Месяц назад

    can you please show how to find "pishing" email location? every Sunday, i got to my mail "paypal" post service" mastercard" re connection . i need to know from where the email came from tnx p.s love your channel

  • @18649128
    @18649128 Месяц назад

    I’d probably do it. 🤦‍♀️

  • @1SONGTHENiDiP
    @1SONGTHENiDiP Месяц назад

    I fell for it...

  • @Sociz
    @Sociz Месяц назад +1

    Is there an any way to get rid of this malware? I fell for it 😅

  • @tairikuokami
    @tairikuokami Месяц назад

    Getting rid of PS5 is the most effective way to prevent modern malware, you do not even need AV.

  • @Vulcan-t2m
    @Vulcan-t2m Месяц назад

    This happened to me a few days ago. I would probably have laughed if you told me I would fall for this cheap of a trick, but even still I fell for it and did it while tired. My main concern now is should I wipe my whole C drive, or can i trust antiviruses to detect and delete it. What should i do?

    • @fred-youtube
      @fred-youtube Месяц назад

      I would try AVs first. I would use Windows Defender, Norton Power Eraser, ADWCleaner, and Hitman Pro.
      If they detect nothing, wipe the drive. If one of them detects the injected Lumma stealer and removes it, you are good.
      Once you have done that, change your password on everything important, such as Google, Microsoft, your online bank, Facebook, Twitter etc.
      If you don't those accounts will probably be compromised soon. Also, don't use a password you've used before. This includes things like adding "123" to the end of one.

    • @fred-youtube
      @fred-youtube Месяц назад

      And finally, check the exceptions part of Windows Defender and make sure the malware hasn't added itself there before running a scan. If it has, remove it from exceptions first.

    • @Vulcan-t2m
      @Vulcan-t2m Месяц назад

      ​@@fred-youtubeI ran several antiviruses and they did find some threats, but I didn't know to look if there was a lumma stealer, and sadly most of my accounts had been compromised at that point. But even then, I still appreciate your help, thanks!

    • @fred-youtube
      @fred-youtube Месяц назад

      @@Vulcan-t2m Have you changed your passwords yet?

    • @marius2738
      @marius2738 Месяц назад

      I wonder how come windows defender didnt block the downloaded package? Were there any alerts?

  • @fardinrizvyrahat9637
    @fardinrizvyrahat9637 24 дня назад +1

    how to fix this?