FBI director Kash Patel’s brand website taken offline after malware reports

FBI director Kash Patel's merchandise website was compromised by hackers using a fake Cloudflare page to trick users into running a ClickFix attack that installed malware, affecting users who visited the site.

1. Attackers used a fake Cloudflare page to trick users into running a ClickFix attack, which installed malware.
2. The malware was likely spread through user interaction with the compromised website, affecting users who visited the site.
3. The attack chain involved a fake Cloudflare page, ClickFix, and malware installation, indicating a social engineering component.
4. Detection opportunities may include unusual network traffic, suspicious registry changes, or malware signatures.

T1566.001 Spearphishing Attachment
T1190 Exploit Public-Facing Application

basedapparel[.]com
fake Cloudflare page
ClickFix attack

Visitors to the compromised website should be advised to run a full system scan with an anti-virus solution and change passwords for all accounts accessed during the visit.