A new wave of cyber fraud, dubbed the 'Click Fix Scam', is targeting computer users by exploiting the simple act of copying and pasting. According to lifestyle content creator Caroline Butler, who shared the warning on TikTok, the scam is designed to deceive 'normal people' into believing they are solving a technical issue, when in reality they are handing over control of their entire device.
How the Scam Works
The scam begins with a pop-up screen that mimics a legitimate virus alert, such as a Google Chrome repair notification or a Windows security verification prompt. Instead of asking victims to download suspicious files, scammers instruct them to copy and paste a code into their computer. 'This is the clever part - people will think that as they are typing it in, it must be safe,' Butler explained to her 273,000 followers.
But the code is malicious. 'The second you paste that code, it can install malware, steal passwords, access bank details or even let scammers remotely control your device,' Butler added. Malware, short for malicious software, is deployed by fraudsters to pilfer data, disrupt access, or extort victims.
Expert Confirmation
This warning is supported by cybersecurity firm McAfee, which describes the technique as a 'sophisticated form of social engineering, leveraging the appearance of authenticity to manipulate users into executing malicious scripts.' McAfee researchers found that these scams spread through multiple channels, including phishing emails and fake support sites, all designed to look familiar. 'The end result is the same: stolen credentials, compromised devices, and exposed personal information,' McAfee added.
Protection Tips
Butler urged users to remember one key rule: 'If a random website or pop-up ever tells you to copy and paste something into your computer, run commands or fix something manually - stop immediately, because legitimate companies do not work like that.' To avoid falling victim, experts recommend the following precautions:
- If it sounds too good to be true, it is. There are no free unlocks for paid apps or streaming services.
- Don't follow tech 'hacks' from unknown creators. Even if they have thousands of views, scammers can fake credibility.
- Use official download sources. Only get software and updates directly from verified developer sites.
- Watch for red flags. Phrases like 'free activation', 'pro version unlock', or 'verify you're human' are often scam signals.
- Use trusted security protection. Security software that spots scams before they spread can help block malicious links and videos automatically.
Phishing emails, which often accompany this scam, are messages claiming to be from reputable organisations like banks or internet providers. They appear genuine but are crafted by scammers to trick recipients. Butler's warning, amplified by McAfee, serves as a critical reminder for all computer users to remain vigilant against this evolving threat.
