ClickFix distributing Vidar Stealer via WordPress targeting Australian infrastructure
The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) has observed ClickFix associated activity leveraging WordPress hosted infrastructure to distribute the Vidar Stealer malware.
This activity is targeting Australian infrastructure and organisations across multiple sectors. The campaign uses compromised WordPress websites to redirect victims to malware delivery mechanisms.