If you use an AI-powered coding assistant like Claude Code, here’s a good reason to always ensure you’re copying commands from the legitimate interface: Scammers are now using cloned versions of popular tools to spread info-stealing malware through fake installation instructions—a tactic known as InstallFix.
Fake Claude Code interface used for InstallFix attacks
Researchers at Push Security have identified carefully copied versions of Claude Code, Anthropic’s command-line AI coding assistant, that look exactly like the real thing, complete with the layout, branding, text, documentation sidebar, and a lookalike domain. Every link on the page even redirects to the legitimate Claude Code site. The only malicious part is the one-line command to install Claude Code for macOS, Windows PowerShell, and Windows CMD. If you copy and paste this into terminal, it’ll deliver malware instead.
InstallFix is a variation ClickFix, a social engineering tactic that uses fake error messages, CAPTCHAs, and command prompts
...Keep reading this article on Life Hacker.
