{"id":108519,"date":"2026-03-19T15:45:12","date_gmt":"2026-03-19T19:45:12","guid":{"rendered":"https:\/\/brocku.ca\/brock-news\/?p=108519"},"modified":"2026-03-19T15:45:12","modified_gmt":"2026-03-19T19:45:12","slug":"brock-its-shares-tips-for-spotting-pop-up-scams","status":"publish","type":"post","link":"https:\/\/brocku.ca\/brock-news\/2026\/03\/brock-its-shares-tips-for-spotting-pop-up-scams\/","title":{"rendered":"Brock ITS shares tips for spotting pop-up scams"},"content":{"rendered":"<p>Brock\u2019s Information Technology Services (ITS) team\u00a0is advising students, faculty and staff to be wary of cyberscams involving fake error messages.<\/p>\n<div id=\"attachment_108524\" style=\"width: 250px\" class=\"wp-caption alignright\"><img aria-describedby=\"caption-attachment-108524\" decoding=\"async\" loading=\"lazy\" class=\"size-full wp-image-108524\" src=\"https:\/\/brocku.ca\/brock-news\/wp-content\/uploads\/2026\/03\/ClickFix2-copy.png\" alt=\"Screenshot of a pop-up message. \" width=\"240\" height=\"427\" \/><p id=\"caption-attachment-108524\" class=\"wp-caption-text\">An example of a pop-up message used in a ClickFix attack.<\/p><\/div>\n<p>\u201cClickFix\u201d or \u201cFileFix\u201d scams are a type of social engineering attack that manipulate users into unknowingly running harmful commands on their devices.<\/p>\n<p>These attacks often appear as fake system or browser error messages \u2014 such as a CAPTCHA message to verify the user is human, a virus alert, an error message or a browser update notice \u2014 that instruct users to follow a series of steps to fix what appears to be a problem. Instead, these steps actually bypass normal security protections and install malicious software on the device.<\/p>\n<p>Steps in a ClickFix attack often include the user being instructed to click a button that secretly copies harmful command to their clipboard, open a legitimate system tool such as the Windows Run box and press CTRL + V and then the Enter key, which pastes the harmful command that launches a script.<\/p>\n<p>The launched script can install malware to steal personal data, give attackers remote access to their device or cause other harm. Because the command is run through a standard system tool, it often goes undetected by antivirus software and browser security warnings.<\/p>\n<p>To protect themselves from ClickFix attacks, users should:<\/p>\n<ul>\n<li>Be wary of messages that create a sense of urgency to act quickly, ask for unexpected steps or seem unusual, no matter how real the page appears.<\/li>\n<li>Close any suspicious website pop-ups immediately without clicking on them.<\/li>\n<li>Never copy and paste commands from unknown or suspicious sources. Legitimate websites or services will never ask users to open a system tool such as Run, PowerShell, or Terminal and paste code to fix a problem or verify their identity.<\/li>\n<li>Verify information in a suspicious or unexpected pop-up by going directly to the organization\u2019s official website or contacting it using a trusted method.<\/li>\n<li>Keep systems and apps up to date.<\/li>\n<li>Use trusted antivirus or security software that can detect unusual activity like suspicious commands.<\/li>\n<li>Report unexpected error or security messages to the ITS team.<\/li>\n<\/ul>\n<p>Members of the Brock community can reach out to <a href=\"mailto:itsecurity@brocku.ca\" target=\"_blank\" rel=\"noopener\">itsecurity@brocku.ca<\/a> with further questions about ClickFix social engineering attacks.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Brock\u2019s Information Technology Services (ITS) team\u00a0is advising students, faculty and staff to be wary of cyberscams involving fake error messages.<\/p>\n","protected":false},"author":1,"featured_media":108521,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[54,7],"tags":[7822,8159,180,134,10105],"_links":{"self":[{"href":"https:\/\/brocku.ca\/brock-news\/wp-json\/wp\/v2\/posts\/108519"}],"collection":[{"href":"https:\/\/brocku.ca\/brock-news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/brocku.ca\/brock-news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/brocku.ca\/brock-news\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/brocku.ca\/brock-news\/wp-json\/wp\/v2\/comments?post=108519"}],"version-history":[{"count":3,"href":"https:\/\/brocku.ca\/brock-news\/wp-json\/wp\/v2\/posts\/108519\/revisions"}],"predecessor-version":[{"id":108525,"href":"https:\/\/brocku.ca\/brock-news\/wp-json\/wp\/v2\/posts\/108519\/revisions\/108525"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/brocku.ca\/brock-news\/wp-json\/wp\/v2\/media\/108521"}],"wp:attachment":[{"href":"https:\/\/brocku.ca\/brock-news\/wp-json\/wp\/v2\/media?parent=108519"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/brocku.ca\/brock-news\/wp-json\/wp\/v2\/categories?post=108519"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/brocku.ca\/brock-news\/wp-json\/wp\/v2\/tags?post=108519"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}