A new banking fraudulent operation is targeting customers of
Mexican banks, fintech, payment processors, and cryptocurrency
exchanges using ClickFix lures. The activity cluster, tracked by
Elastic Security Labs under the moniker REF6045, involves infecting
victims through fake CAPTCHA verification pages that deceive them
into running a malicious command that installs a PowerShell toolkit
dubbed
Read more https://thehackernews.com/2026/07/scmbanker-malware-uses-clickfix-lures.html

