FBI DIRECTOR'S APPAREL SITE HOSTS MALWARE ATTACK

Security researchers discovered the attack vector on the e-commerce site, which uses social engineering tactics common to ClickFix campaigns. These attacks typically display fake system warnings or update prompts, deceiving users into downloading malware. ClickFix attacks have become increasingly prevalent in 2024, targeting Windows users through compromised websites and malicious ads. The malware often leads to ransomware infections or credential theft. The discovery raises questions about website security practices and third-party vulnerabilities. It's unclear whether the attack represents a compromise of the site's infrastructure or a supply chain issue. Based Apparel sells merchandise featuring political messaging. The incident highlights how high-profile websites remain attractive targets for attackers seeking to distribute malware at scale. No statement has been issued regarding the attack or remediation efforts.