Sponsored: Push Security on ConsentFix attacks

In this Risky Business News sponsor interview, Catalin Cimpanu talks with Luke Jennings, VP of Research & Development at Push Security, about ConsentFix. It’s a new form of email-based social engineering attack used in the wild, an evolution of the ClickFix attack that goes after your identity.

Show notes

• ConsentFix: Analysing a browser-native ClickFix-style attack that hijacks OAuth consent grants
• ConsentFix debrief: latest community insights, recommendations, and predictions
• Luke Jennings, ConsentFix LinkedIn post
• Year in Review: How Phishing Attacks Evolved in 2025