About this episode
In this Risky Business News sponsor interview, Catalin Cimpanu talks with Luke Jennings, VP of Research & Development at Push Security, about ConsentFix. It’s a new form of email-based social engineering attack used in the wild, an evolution of the ClickFix attack that goes after your identity.
Show notes
ConsentFix: Analysing a browser-native ClickFix-style attack that hijacks OAuth consent grants
ConsentFix debrief: latest community insights, recommendations, and predictions
Luke Jennings, ConsentFix LinkedIn post
Year in Review: How Phishing Attacks Evolved in 2025
