Security Awareness

Click-fix attacks: what they are and how to stay safe

Clear guidance for everyday work. Learn how these scams look and what to do if something feels wrong.

What a click-fix scam looks like

A warning message appears

You see a page that says access is blocked and a quick fix is needed.

You are asked to copy and paste text

The steps look simple and urgent, which makes them seem trustworthy.

The result is not what you expected

The pasted text may be different from what you saw on screen.

Common warning signs

Pressure language

Messages that demand immediate action to avoid losing access.

Unexpected extra steps

A file page asking you to paste text somewhere else before opening.

Looks familiar, feels odd

The style resembles tools you know, but the behavior is unusual.

No normal support route

The page pushes you to trust it instead of your regular help process.

What to do in the moment

1

Pause. Do not paste or run anything.

2

Take a screenshot so your support team can review it.

3

Report it through your normal IT or security contact route.

4

Return to work using trusted bookmarks or known links.

If a page tells you to "paste this fix," stop and verify first.