ClickFix Block

Block ClickFix and Fake CAPTCHAs by hooking JavaScript copy-to-clipboard functions.

*** About *** Developed by Eye Security, ClickFix Block stops malicious Fake CAPTCHA and ClickFix attacks before they can do damage! Clipboard-based social engineering attacks, called ClickFix or Fake CAPTCHA, are more and more often used in malware and credential theft campaigns. Fake CAPTCHAs are designed to trick the end-user into running malicious commands via Win+R and Ctrl+V, while prefilling the clipboard with a malicious command. ClickFix Block intercepts copy-to-clipboard operations triggered by JavaScript and checks the content for suspicious keywords, helping prevent malicious content from being silently copied to your clipboard. The extension also displays a warning if such malicious content is found. This extension does not influence normal copy and paste! *** Features *** ✓ Injects monitoring code into every webpage to detect and block suspicious clipboard copy attempts. ✓ Uses keyword matching (e.g. powershell, mshta, not a robot) to identify potentially malicious clipboard activity related to ClickFix and/or Fake CAPTCHA ✓ Optional "Block All" mode, which completely disables all JavaScript-based clipboard copying. Even if filters are bypassed, nothing is copied to the clipboard, stopping the attack cold. ✓ Normal clipboard use via keyboard shortcuts (Ctrl+C, Ctrl+V) remains unaffected. ✓ Localization in four different languages: English, German, French and Dutch. *** Disclaimer *** ⮞ This extension injects code into every webpage you visit in order to monitor and intercept potentially malicious clipboard operations. This is similar to how other trusted tools such as password managers operate. ⮞ In rare cases, this extension may interfere with legitimate websites or tools that use similar keywords in their copy-to-clipboard functionality. Consider allowlisting trusted domains if you experience this. ⮞ A "Block All" mode is available, which disables all JavaScript-based clipboard copying. This may break expected behavior on some websites. Again, consider allowlisting trusted domains if you experience this. ⮞ Normal clipboard use via keyboard shortcuts (Ctrl+C, Ctrl+V) is not affected. ⮞ This extension is provided "as is", without warranty of any kind, express or implied. Use it at your own risk. Eye Security is not responsible nor liable for any damage, data loss, or disruption caused by the use or misuse of this extension.