Hello and welcome to the Monday, October 20th, 20th,

20th, 205 edition of the Sands International Storm Center's Stormcast.

My name is Johannes Ulrich, recording today from Jacksonville, Florida.

And this episode is brought you by the sands.edu graduate certificate program in cybersecurity engineering.

TikTok apparently has learned from ClickFix.

Xavier came across a TikTok video that advertised ways to get Photoshop for free.

But of course, instead of getting free versions of expensive software,

you're actually stuck with Mather.

The technique used here is very similar to what's commonly used as clickfix,

where you're being prompted with a captcha,

and then you have to essentially copy paste power shell code into your

power shell window on your windows machine. Well, here the difference is only that it's done via

TikTok. So the TikTok video basically tells you how to copy or how to type the power shell script

into your PowerShell window,

that of course you're first being instructed to start as an administrator,

and then, well, the malicious code is executed.

In this code, additional malware is being downloaded

that will then essentially download InfoSte stealers or whatever the attacker would like

to load on your system.

Good news is that virus total promises a good recognition rate for at least this particular

version of this scam, but there are hundreds literally out there that do similar things that, again, no promise

free software, but then trick you into actually executing this PowerShell code. And it's not always

...