ErrTraffic ClickFix Framework Abuses Compromised WordPress Sites to Deliver Infostealers

The ErrTraffic framework is increasingly compromising WordPress sites using deceptive social engineering tactics known as ClickFix to distribute dangerous infostealers. Operating as a Malware-as-a-Service (MaaS) since late 2025 by a threat actor named “LenAI”, this malicious JavaScript ecosystem injects fake error messages to trick users into executing malicious code. The framework uses highly convincing lures, […]
The post ErrTraffic ClickFix Framework Abuses Compromised WordPress Sites to Deliver Infostealers appeared first on Cyber Security News.