A new scam uses Captcha codes to trick users into installing malware, putting their personal data at risk. The fraudsters are using fake Captchas, which, when clicked, can lead to the installation of malicious software, such as Luma Stealer. This malware can then steal important data from your devices.
Users should be extremely cautious when they are browsing, particularly when they visit unfamiliar websites, click on pop-up ads, or enable browser notifications. They might encounter prompts like ‘I am not a robot,’ which are standard for websites to verify that a bot isn’t trying to access the site.
Fraudsters insert fake Captcha codes into hacked websites and phishing emails. When a user interacts with the fake Captcha, malware installs itself on the user’s system. Once inside, the malware can steal sensitive information like banking details and login credentials.
To stay safe, always verify the website URL, do not enable notifications from unknown websites, ignore suspicious pop-ups, update your antivirus and security software, and be careful when using public Wi-Fi.