AI Click Bait

Type: technique

Description: The adversary crafts deceptive web content designed to bait Computer-Using agents into taking unintended actions, such as clicking buttons, copying code, or navigating to specific web pages. These attacks exploit the agent's interpretation of UI content, visual cues, or prompt-like language embedded in the site. When successful, they can lead the agent to inadvertently copy and execute malicious code on the user's operating system.

Version: 0.1.0

Created At: 2025-06-19 08:13:23 -0400

Last Modified At: 2025-06-19 08:13:23 -0400

External References

AI ClickFix: Hijacking Computer-Use Agents Using ClickFix, Embrace the Red

--> Execution (tactic): An adversary can trick an AI agent into following website instructions and executing malicious code on the user's system.
--> Johann Rehberger (entity): Demonstrated by
<-- AI ClickFix: Hijacking Computer-Use Agents Using ClickFix (procedure): The malicious website is designed to bait the computer into clicking a button which triggers a command to be copied to the clipboard.

AI Agents Attack Matrix

AI Click Bait

External References

Related Objects

Related Frameworks