Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

MacRumors

macrumors bot
Original poster


Opera browser has announced a new security feature called Paste Protect that aims to stop clipboard-based cyberattacks before their malicious commands can be accidentally executed.

Paste-Protect-opera.jpg

Opera says it's the first major browser to offer native protection against ClickFix attacks – a growing form of social engineering that tricks users into copying and pasting malicious commands into a computer's terminal. The new feature is built into Opera's desktop browsers and enabled by default.

ClickFix attacks typically masquerade as routine troubleshooting prompts, such as fake CAPTCHA verification or video playback fixes. Once pasted and executed, the commands can install malware, steal passwords, or give attackers remote access to a device. Opera describes the browsing risk as follows:
A ClickFix-style attack usually starts with something small and ordinary: a video that won't play, or a CAPTCHA that won't quite verify you're human. A pop-up offers a fix, telling you to copy a short command and paste it into your computer's terminal. It looks like routine troubleshooting. In reality, that command can install malware, steal saved passwords, or hand an attacker remote access to your machine, all carried out by the user's own hands, on their own device.
Opera features an existing clipboard hijack protection feature that prevents external applications from silently replacing copied content such as cryptocurrency wallet addresses. Paste Protect combines this with a new injection protection system that monitors clipboard activity for suspicious commands copied from websites and blocks potentially malicious content before it reaches the clipboard.

Users can see the first 120 characters of the blocked content, and developers working with trusted sources can override the block or mark specific sites as safe.

Opera cited research from cybersecurity firm Huntress that said ClickFix accounted for more than 53 percent of malware-loading cyberattacks last year, indicating the rapid growth of the technique.

Apple itself introduced a related safeguard for the Mac with the release of macOS Tahoe 26.4 earlier this year. Following the update, the operating system explicitly warns the user before they paste potentially dangerous commands into the Terminal app.

Opera browser is available now as a free update and can be downloaded from the company's website.

Article Link: Opera Browser Gains Protection Against Malicious Clipboard Commands
 
  • Haha
Reactions: Z-4195
Glad to see that the browser developers and Apple are on top of the situation and offering countermeasures. I only started noticing this attack vector this year. ClickFix is a downright stupid method of infecting a system, but it's surprising how many people fall for it.
 
  • Like
Reactions: DEMinSoCAL
That'll save their two customers a lot of headaches.
lol, oh jeez!
I was actually thinking about giving it a try. It's been several years since I used it, but I've been looking at the alternatives more and more lately.
 
It’s nice but don’t underestimate people’s ability to ignore warnings when told to do so

If you’ve ever seen a YouTube video about tech support scammers you’ll know how ineffective all those “Never give this code to anyone you don’t know” warnings are when the two people involved are a senior citizen who’s worried they’ve been hacked and some scumbag insisting “the warning is because this is a robotic support server ma’am, just click accept”

Or some kid who REALLY thinks they’re getting free Robux if they copy paste this text on the web inspector, lets not be ageist here
 
Or some kid who REALLY thinks they’re getting free Robux if they copy paste this text on the web inspector, lets not be ageist here
As someone who downloaded the "latest new warez" back in the AOL days as a child... resulting in a DELTREE'd and virused family computer and a panicked afternoon of trying to restore the system to exactly how it looked in order to avoid death by parents, you're absolutely right that both the kids AND the seniors that have lost their critical judgement are susceptible.
 
  • Like
Reactions: Haiku_Oezu
I used to use Opera and Opera GX at different times many years ago. They were good browsers, but I don't particularly miss them. I used Yandex for the last few years, bounced around in Firefox, Floorp and Waterfox earlier this year before finally deciding on Brave a couple months back. I've used Brave before, but they've fixed a lot of the issues I had with them in the past.
 
Glad to see that the browser developers and Apple are on top of the situation and offering countermeasures. I only started noticing this attack vector this year. ClickFix is a downright stupid method of infecting a system, but it's surprising how many people fall for it.
And it just goes to show how strong the basic level of security we all enjoy is. And also shows why security researchers reporting some novel complex multiple step exploit is cute. 🙂 Yes, it’s an exploit, but when an attacker can simply ask the person at the keyboard to perform a more reliable and powerful attack, the likelihood of anyone actually using their science experiment in the wild becomes incredibly low.
 
  • Like
Reactions: jchap
lol, oh jeez!
I was actually thinking about giving it a try. It's been several years since I used it, but I've been looking at the alternatives more and more lately.
It was bought out by a data harvesting Chinese company years ago. Don't bother.
 
It was bought out by a data harvesting Chinese company years ago. Don't bother.
Legitimate question - Unless you are a high ranking government official, what is your real concern about China harvesting your data?
Arguably, your own country has the greatest power to invade your privacy using your data. Companies like Google and Meta damage my privacy far more than anywhere in China, and China wouldn't gain anything of interest from a not notable citizen like myself anyway.
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.