iClicker Website Hacked in Fake CAPTCHA Scam

The website of iClicker, an educational technology platform, has been compromised in a cyberattack involving a fraudulent CAPTCHA scheme, according to a report from Hackread. The incident is part of a broader tactic known as a ClickFix attack, where attackers embed fake CAPTCHA challenges to deceive users into interacting with malicious content.

The compromised section of the iClicker site reportedly displayed counterfeit CAPTCHA prompts, which redirected visitors to potentially harmful destinations. This method is designed to exploit user trust by mimicking legitimate user verification systems. The attackers’ objective appears to be generating advertising revenue or distributing malware via these deceptive redirects.

The breach highlights growing concerns over supply chain and third-party script vulnerabilities in educational platforms, which are increasingly being targeted due to their widespread user base. As of now, there is no confirmation of user data exposure. iClicker has not publicly commented on the incident, and it remains unclear how long the malicious content was active on the site.