{"id":10667,"date":"2026-02-14T10:04:01","date_gmt":"2026-02-14T10:04:01","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2026\/02\/14\/claude-llm-artifacts-abused-to-push-mac-infostealers-in-clickfix-attack\/"},"modified":"2026-02-14T10:04:01","modified_gmt":"2026-02-14T10:04:01","slug":"claude-llm-artifacts-abused-to-push-mac-infostealers-in-clickfix-attack","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2026\/02\/14\/claude-llm-artifacts-abused-to-push-mac-infostealers-in-clickfix-attack\/","title":{"rendered":"Claude LLM artifacts abused to push Mac infostealers in ClickFix attack"},"content":{"rendered":"<p>    Claude LLM artifacts abused to push Mac infostealers in ClickFix attack<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>Threat actors are abusing\u00a0Claude artifacts and Google Ads in ClickFix campaigns that deliver infostealer malware to macOS users searching for specific queries. [&#8230;]<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><br \/>\n    Bill Toulas<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/claude-llm-artifacts-abused-to-push-mac-infostealers-in-clickfix-attack\/\">Go to bleepingcomputer<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Claude LLM artifacts abused to push Mac infostealers in ClickFix attack Threat actors are abusing\u00a0Claude artifacts and Google Ads in ClickFix campaigns that deliver infostealer malware to macOS users searching for specific queries. [&#8230;] Bill Toulas Go to bleepingcomputer<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[64,133],"tags":[80],"class_list":["post-10667","post","type-post","status-publish","format-standard","hentry","category-bleepingcomputer","category-security","tag-bleepingcomputer"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/10667"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=10667"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/10667\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=10667"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=10667"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=10667"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}