FBI director's Based Apparel site has been spotted hosting a 'ClickFix' attack
An apparel site co-created by FBI director Kash Patel has been found attempting to deceive macOS users into installing malware. The site, BasedApparel.com, employs a Clickfix-style attack that tricks users into executing a malicious command. Security researchers have indicated that this attack may involve compromised elements of the website.
- ▪BasedApparel.com is associated with FBI director Kash Patel and co-created with Andrew Ollis.
- ▪The site has been reported to host a Clickfix-style attack targeting macOS users.
- ▪Users are misled into running a malicious command through a fake Cloudflare verification page.
Opening excerpt (first ~120 words) tap to expand
An apparel site from FBI director Kash Patel has been spotted trying to trick macOS users into installing malware. The site, BasedApparel.com, is part of a merchandise brand that Patel co-created with Andrew Ollis prior to becoming FBI director under the Trump administration. On Thursday, a user based in Portugal spotted the online shop hosting a “Clickfix” style attack that tries to dupe unsuspecting users into running a malicious command on their Mac computers. The attack seems to work as the user visits BasedApparel.com; a victim will encounter the site showing a page pretending to come from Cloudflare, which powers “Verify you are human” CAPTCHA tests and offers DDoS protection.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at PCMAG.
Discussion
0 commentsMore from PCMAG
