The DNSC warns that the North Korea-associated APT Lazarus group is using the ClickFix technique to compromise systems with malware, bypassing security measures.

The National Cyber Security Directorate (NCSD) has reported that APT Lazarus uses the ClickFix technique, which combines phishing with malicious command execution, to compromise targets. This method exploits user trust through fake web pages and job offers, causing victims to run malicious PowerShell commands. DNSC recommends training users, restricting PowerShell execution, blocking malicious domains, and implementing multi-factor authentication to mitigate risk.