Russian state-sponsored hackers, like COLDRIVER, exploit fake CAPTCHA prompts in phishing attacks to deploy malware, targeting diplomats, NGOs, and journalists for credential theft. This “ClickFix” tactic evolves rapidly with variants like NoRobot, complicating detection. Defenses emphasize user education and behavioral monitoring to counter these adaptive threats.
