AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

AI ClickFix: Hijacking Computer-Use Agents Using ClickFix

infonews

securitysafety

Source: Embrace The RedMay 24, 2025

Summary

ClickFix is a social engineering technique (a method that tricks people rather than exploiting technical vulnerabilities) that adversaries are adapting to attack computer-use agents (AI systems that can control computers by clicking and typing). The attack works by deceiving users into believing something is broken or needs verification, then tricking them into clicking buttons or running commands that compromise their system.

Classification

Attack Type

Jailbreak

Attack SophisticationModerate

Impact (CIA+S)

integritysafety

Related Issues

critical

CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-

Similar attackNVD/CVE Database

info

Secure Homegrown AI Agents with CrowdStrike Falcon AIDR and NVIDIA NeMo Guardrails

Similar attackCrowdStrike Blog

Original source: https://embracethered.com/blog/posts/2025/ai-clickfix-ttp-claude/

First tracked: February 12, 2026 at 02:20 PM

Classified by LLM (prompt v3) · confidence: 75%