Fraudsters are employing a new Captcha-based scam to steal data and infect devices with malware. By using fake Captcha codes, they lure users into downloading malicious software like Luma Stealer, which can steal sensitive information.
This malware can extract valuable data from your phones and computers, including financial and login information. Users must be particularly cautious when browsing, especially when encountering unfamiliar websites, clicking on pop-up ads, or enabling browser notifications.
Fraudsters create copies of popular websites and display fake prompts on the screen. When a user clicks on a fake Captcha, they are asked to grant notification permissions or download files. Clicking on a Captcha itself doesn’t install malware, but granting notification permissions or downloading files can lead to malware infiltrating the device. To avoid falling victim to this scam, always verify website URLs, avoid enabling notifications from unfamiliar sources, ignore suspicious pop-ups, keep your antivirus and security software updated, and exercise caution on public Wi-Fi networks.
