Cybersecurity Researchers Uncover "ClickFix" Campaign Targeting Tech Professionals with MacSync Malware

Cybersecurity researchers at 7AI identified a fraud campaign dubbed "ClickFix" targeting tech professionals by distributing MacSync malware through fake AI extensions and malicious Google ads. The attack impersonates legitimate Claude AI tools to deceive developers into installing the malware. No specific dates, affected user counts, or technical indicators (e.g., CVE IDs) were disclosed in the report. The primary impact involves data theft from compromised systems. The campaign leverages social engineering tactics to exploit trust in AI-related software.