Fake Claude Code install guides push infostealers in InstallFix attacks

Threat actors are employing a new variation of the ClickFix social engineering technique called InstallFix to convince users into running malicious commands under the pretext of installing legitimate ...
Security Boulevard

Beware of fake OpenClaw installers, even if Bing points you to GitHub

Bing search results pointed victims to GitHub repositories claiming to host OpenClaw installers, but in reality they installed malware.
PCMag on MSN

Phony Claude Code Install Guides Trick Vibe Coders Into Installing Malware

Dubbed InstallFix by Push Security, the scheme inserts instructions to download malware during the Claude Code install process on cloned websites.