What is ClickFix?

ClickFix is a scam that tricks you into running malicious code on your own computer. It's one of the fastest-growing cyber threats in 2025.

⚠️ How it works: A fake error message tricks you into copying malicious code to your clipboard, then tells you to press Windows + R (or open Terminal on Mac), then Ctrl + V, then Enter. This runs hidden malware that steals your passwords and personal data.

Why You Should Care

ClickFix attacks increased by 517% in early 2025. Unlike traditional scams, this one bypasses your browser's security by making you run the malicious code yourself.

It's designed to look like a legitimate error from Google, Microsoft, or other trusted companies.

Learn more about ClickFix →

How It Works

The scam uses social engineering to trick you into thinking your browser or a website has a problem. It then provides "fix" instructions that actually run malware.

We've created a detailed breakdown with real examples of the malicious code used.

See the technical breakdown →

See What a ClickFix Attack Looks Like

We've created a safe, educational simulation that shows you exactly what happens during a ClickFix attack. No actual malware is involved.

Try the Interactive Demo

How to Protect Yourself

Never paste commands from websites into your computer's Run dialog or terminal
Be suspicious of "fix" instructions that involve keyboard shortcuts
Check the URL - Real error messages don't come from random websites
When in doubt, close the tab and navigate to the site directly