www.malwarebytes.com 7/3/2026, 2:21:24 PM · external

Fake X ad spreads malware to Macs, ConsentFix hijacks M365

Fake X ad spreads malware to Macs, ConsentFix hijacks M365
CyberSIXT Evidence Panel Source marked as original reporting

THE article discusses two new cybercriminal strategies targeting users: a ClickFix attack spreading malware through a sponsored advertisement on X, specifically targeting Mac users, and a ConsentFix technique that steals Microsoft 365 accounts without requiring malware installation. The ClickFix attack occurred when a verified X account promoted a fake download for a legitimate app, leading users to a malicious site pretending to be a trusted app, where they inadvertently installed malware.

The ConsentFix method, aimed primarily at Windows users, utilizes social engineering to extract login tokens from users via browser interactions, allowing attackers to take control of Microsoft accounts without needing passwords. Users are advised to be cautious with unexpected links, verify URLs before entering credentials, and use real-time anti-malware solutions for protection.

View full article

Article by CyberSIXT