Summary
Ukraine's CERT center warns that Russia's elite hacking group, Sandworm, is now using the Clickfix attack technique to compromise devices of sensitive organizations in Ukraine. Clickfix involves displaying a fake CAPTCHA that, when copied, executes malicious scripts to install malware or exfiltrate data.