Google flags first AI-assisted zero-day attack targeting 2FA
Google says hackers used AI to craft a zero-day 2FA bypass, raising new risks for crypto wallets, AI agents, and global security teams now.
Showing 1–2 of 2
Google says hackers used AI to craft a zero-day 2FA bypass, raising new risks for crypto wallets, AI agents, and global security teams now.
The post ClickFix malware campaign targets Mac users searching for help appeared on BitcoinEthereumNews.com. Attackers are posting fake macOS troubleshooting guides on Medium, Craft, and Squarespace. The goal is to make users run Terminal commands that install malware targeting iCloud data, saved passwords, and crypto wallets. Microsoft’s Defender Security Research Team published the findings. The campaign has been running since late 2025. It preys on Mac users searching for help with common problems like freeing up disk space or fixing system errors. Instead of offering a legit fix, the pages tell users to copy a command and paste it into Terminal. That command pulls down and runs malware. The misleading blog posts tell readers to copy a malicious command and paste it into Terminal. This command downloads malware and runs it on the victim’s computer. The technique is called ClickFix. It’s social engineering that changes responsibility for launching the payload onto the victim. Because