Hackers are using a new ClickFix malware variant, “LightPerlGirl,” to infect users.

On June 13, researchers discovered the malware hidden on a compromised Galapagos travel site, where visitors were tricked into running a PowerShell script disguised as a Cloudflare CAPTCHA. The attack loads the Lumma infostealer entirely in memory, bypassing antivirus detection and potentially exposing corporate networks through infected personal devices. Security experts recommend restricting untrusted PowerShell scripts, monitoring clipboard activity, and scanning for signs of Lumma infections.

Read more:

https://www.securityweek.com/new-clickfix-malware-variant-lightperlgirl-targets-users-in-stealthy-hack/