---
title: "New ClickFix Scam, Dental Practice Banned, UK MPs Targeted | DMARC Report"
description: "New ClickFix Scam, Dental Practice Banned, UK MPs Targeted from DMARC Report explains practical steps for email authentication, domain protection."
image: "https://dmarcreport.com/og/blog/new-clickfix-scam-dental-practice-banned-uk-mps-targeted.png"
canonical: "https://dmarcreport.com/blog/new-clickfix-scam-dental-practice-banned-uk-mps-targeted/"
---
Quick Answer
\_According to the FBI's 2022 Internet Crime Report (IC3), 300,497 US-based victims reported phishing incidents in a single year, and Business Email Compromise (BEC) caused more than $2.7 billion in direct losses. New ClickFix Scam, Dental Practice Banned, UK MPs Targeted
Related: [Free DMARC Checker](/tools/dmarc-checker/) ·[How to Create an SPF Record](/tools/spf-record-generator/) ·[SPF Record Format](/blog/spf-format-checker-dos-and-donts-for-email-authentication/)
Share
[ ](https://www.linkedin.com/sharing/share-offsite/?url=undefined%2Fblog%2Fnew-clickfix-scam-dental-practice-banned-uk-mps-targeted%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=New%20ClickFix%20Scam%2C%20Dental%20Practice%20Banned%2C%20UK%20MPs%20Targeted&url=undefined%2Fblog%2Fnew-clickfix-scam-dental-practice-banned-uk-mps-targeted%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=undefined%2Fblog%2Fnew-clickfix-scam-dental-practice-banned-uk-mps-targeted%2F "Share on Facebook") [ ](https://reddit.com/submit?url=undefined%2Fblog%2Fnew-clickfix-scam-dental-practice-banned-uk-mps-targeted%2F&title=New%20ClickFix%20Scam%2C%20Dental%20Practice%20Banned%2C%20UK%20MPs%20Targeted "Share on Reddit") [ ](mailto:?subject=New%20ClickFix%20Scam%2C%20Dental%20Practice%20Banned%2C%20UK%20MPs%20Targeted&body=Check out this article: undefined%2Fblog%2Fnew-clickfix-scam-dental-practice-banned-uk-mps-targeted%2F "Share via Email")
\_According to the [FBI’s 2022 Internet Crime Report (IC3)](https://www.ic3.gov/Media/PDF/AnnualReport/2022IC3Report.pdf), 300,497 US-based victims reported phishing incidents in a single year, and Business Email Compromise (BEC) caused more than $2.7 billion in direct losses.
> The support tickets we get after a spoofing incident all start the same way: ‘we didn’t know someone was sending email from our domain,’ says Vasile Diaconu, Operations Lead at DuoCircle. DMARC reporting would have caught it weeks earlier. The cost of monitoring is nothing compared to the cost of a successful impersonation attack.
```
DMARC Report
```
New ClickFix Scam, Dental Practice Banned, UK MPs Targeted
```
```
/
```
```
RSS Feed
```
Share
Link
Embed
```
/\*! This file is auto-generated \*/ ’ title=“Embed Code” class=“input-embed input-embed-35586” readonly/>
```
```
[Cybercriminals](https://incyber.org/en/article/united-states-amounts-stolen-by-cybercriminals-up-33/) are getting smarter, quieter, and far more convincing. From a new browser-based ClickFix variant that slips past traditional security tools, to healthcare organizations facing legal action after phishing breaches, and even UK MPs being targeted through trusted messaging apps, recent incidents show how fast attack methods are evolving. These threats no longer rely on obvious malware or shady links. Instead, they exploit user trust, **familiar platforms**, and small human actions that feel harmless in the moment.
Here is a \*\*quick breakdown of the latest [cybersecurity](https://dmarcreport.com/blog/how-to-educate-or-train-employees-on-cybersecurity/) incidents making headlines and why they matter for organizations, public officials, and everyday users alike.
## **Beware of this new ClickFix scam!** A new type of ClickFix scam is doing the rounds. Known as ConsentFix, this [cyberattack](https://www.ndtv.com/world-news/us-firm-claims-it-foiled-large-scale-ai-cyberattack-by-chinese-hackers-9640198) tries to bypass security mechanisms. For **conventional security tools**, it is almost impossible to detect this type of consent phishing attempt.
Generally, in a [ClickFix attack](https://www.csoonline.com/article/4105230/meet-consentfix-a-new-twist-on-the-clickfix-phishing-attack.html), a counterfeit [CAPTCHA](https://en.wikipedia.org/wiki/CAPTCHA) or a fake error is used to persuade the victim to copy and paste, or execute, harmful commands on their **phones or desktops**. But in the case of the ConsentFix attack, the entire attack takes place inside the browser. This, unfortunately, eliminates one of the major [threat detection](https://www.prnewswire.com/news-releases/opentext-to-showcase-ai-driven-threat-detection-identity-security-and-application-protection-at-black-hat-usa-2025-302517339.html) checkpoints.
When a victim comes across a legitimate but otherwise compromised website during a Google search , it allows the threat actors to bypass **traditional anti-phishing tools**. A fake Cloudflare CAPTCHA verification page pops up, asking the victim to share their business email address to prove they are human.
_Next, a Microsoft login page appears on the screen, with a legitimate URL_. The victim will now have to copy the URL and paste it into the given field again to **prove they are human**. Now, the [threat actor](https://www.cybersecuritydive.com/news/microsoft-crowdstrike-other-cyber-firms-collaborate-on-threat-actor-taxon/749614/) can access to the victim’s Microsoft account via this URL.
\*\*Cyber experts believe the success rate of this ConsentFix [phishing attack](https://www.infosecurity-magazine.com/news/mobile-phishing-attacks-surge-16/) is quite low so far because the likelihood of an employee copying and pasting a long URL is very rare. Cyber experts urge organizations to strengthen [email security](https://dmarcreport.com/blog/why-email-security-matters-and-how-to-get-it-right/) by properly implementing [DMARC](https://dmarcreport.com/), [DKIM](https://dmarcreport.com/what-is-dkim/), and [SPF](https://autospf.com/blog/spf-guide-understanding-sender-policy-framework/) to combat phishing and spoofing attacks.
## \*\*Dental practice prohibited because of cyber breach involvement It dates back to October 2024, when Fresh Dental, a dental clinic, was targeted by phishing actors. [Cybercrooks](https://wtop.com/local/2025/04/cyber-crooks-scam-dc-md-and-va-out-of-848-million-in-2024/) had managed to get access to the \*\*Microsoft 365 email accounts of some of the Fresh Dental employees. These compromised Microsoft 365 accounts are then misused to send [malicious emails](https://www.securitymagazine.com/articles/100687-the-last-six-months-shows-a-341-increase-in-malicious-emails) to other targets.
_When the investigation was carried out, experts found multiple technical and security failures on Fresh Dental’s part._ The dental clinic could not carry out its own investigation procedures because of a lack of appropriate technical facilities. Fresh Dental also failed to conduct timely cybersecurity training. Secondly, the dental clinic failed badly at penetration testing before the [data breach](https://www.bleepingcomputer.com/news/security/data-breach-at-us-healthcare-provider-chc-impacts-1-million-patients/). Neither was there any \*\*professional agreement between Fresh Dental and its [IT service provider](https://www.cloudavize.com/it-service-provider/) regarding the handling of personal data.
All these clearly contradict the legalities, and as a result, the Law has issued an \*\*enforcement order which requires Fresh Dental to deploy organizational and technical measures to minimize the risk of phishing attacks, sign a legal agreement with the IT provider, and take a [penetration test](https://www.ibm.com/think/topics/penetration-testing) to prove the security efficacy of their systems.
## **UK MPs are being targeted by message-based phishing attacks!** _UK MPs are being targeted by message app-based phishing attacks left, right, and center._ It is believed that the threat actors are allegedly from Russia. They are using the Signal and [WhatsApp accounts](https://www.msn.com/en-us/news/world/mps-warned-russian-hackers-are-trying-to-gain-access-to-their-whatsapp-accounts/ar-AA1SaK2C) of these MPs to target them. The cybercrooks send messages while posing as support team executives \*\*of the messaging apps. Next, they ask the victims to either click on a [malicious link](https://www.scworld.com/news/new-usps-text-scam-uses-unique-method-to-hide-malicious-pdf-links), enter a code, or scan a [QR code](https://www.investopedia.com/terms/q/quick-response-qr-code.asp).
If the victim follows all instructions, the threat actor gains access to the victim’s contact list, all **parliamentary messages**, and the victim’s daily activity on the device. The worst part is that the cybercrook will not even get detected!
The UK parliamentary authority has advised the MPs and other officials to amp up their **cybersecurity preparations**.
The [National Cyber Security Center (NCSC)](https://www.ncsc.gov.uk/news/ncsc-partners-share-guidance-for-communities-at-high-risk-of-digital-surveillance) has advised MPs and officials not to use commercial messaging apps for parliament-related work. Also, for informal communications, \*\*Microsoft Teams is considered to be a safe option. MPs have also been advised to enable [two-factor authentication](https://www.techtarget.com/searchsecurity/definition/two-factor-authentication) on all their messaging accounts, unlink any unrecognized or suspicious devices, and remove them then and there.
## Topics
[ dkim ](/tags/dkim/)[ DMARC ](/tags/dmarc/)[ email security ](/tags/email-security/)[ News ](/tags/news/)[ SPF ](/tags/spf/)
[ Vishal Lamba ](/authors/vishal-lamba/)
Content Specialist
Content Specialist at DMARC Report. Writes vendor-specific email authentication guides and troubleshooting walkthroughs.
[LinkedIn Profile →](https://www.linkedin.com/in/vishal-lamba/)
## Take control of your DMARC reports
Turn raw XML into actionable dashboards. Start free - no credit card required.
[Start Free Trial](https://app.dmarcreport.com/) [Check Your DMARC Record](/tools/dmarc-checker/)
## Related Articles
[ Foundational 4m Akira flaunts victims, Idaho targets orthodontist, AI granny protects Nov 22, 2024 ](/blog/akira-flaunts-victims-idaho-targets-orthodontist-ai-granny-protects/)[ Foundational 4m Ambient Light Spying, Cybersecurity Prices Drop, Euro 2024 Threats Jul 10, 2024 ](/blog/ambient-light-spying-cybersecurity-prices-drop-euro-2024-threats/)[ Foundational 4m Banks Drop OTPs, Major Cyber Heist, Spying Spouses Arrested Jul 18, 2024 ](/blog/banks-drop-otps-major-cyber-heist-spying-spouses-arrested/)[ Foundational 4m Car Cameras Hackable, UK Water Breach, Thailand Frees Captives Feb 28, 2025 ](/blog/car-cameras-hackable-uk-water-breach-thailand-frees-captives/)
```json
{"@context":"https://schema.org","@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138898167","https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.g2.com/products/dmarc-report/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc","https://www.trustradius.com/products/duocircle/reviews"],"aggregateRating":{"@type":"AggregateRating","ratingValue":"4.8","reviewCount":"470","bestRating":"5","worstRating":"1","url":"https://www.g2.com/products/dmarc-report/reviews"},"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://dmarcreport.com/support/"},"knowsAbout":["DMARC","DMARC Reporting","DMARC Aggregate Reports","DMARC Forensic Reports","Sender Policy Framework","DKIM","Email Authentication","Email Security","DNS Management","Email Deliverability"]}
```
```json
{"@context":"https://schema.org","@type":"WebSite","name":"DMARC Report","url":"https://dmarcreport.com","description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","publisher":{"@type":"Organization","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```
```json
[{"@context":"https://schema.org","@type":"BlogPosting","headline":"New ClickFix Scam, Dental Practice Banned, UK MPs Targeted","description":"New ClickFix Scam, Dental Practice Banned, UK MPs Targeted from DMARC Report explains practical steps for email authentication, domain protection.","url":"https://dmarcreport.com/blog/new-clickfix-scam-dental-practice-banned-uk-mps-targeted/","datePublished":"2025-12-18T08:13:45.000Z","dateModified":"2026-04-16T15:53:43.000Z","dateCreated":"2025-12-18T08:13:45.000Z","author":{"@type":"Person","@id":"https://dmarcreport.com/authors/vishal-lamba/#person","name":"Vishal Lamba","url":"https://dmarcreport.com/authors/vishal-lamba/","jobTitle":"Content Specialist","description":"Vishal Lamba writes DMARC Report's how-to guides and vendor-specific configuration walkthroughs. His work focuses on step-by-step implementation guides for major email platforms (Google Workspace, Microsoft 365, SendGrid, Mimecast, Proofpoint, Brevo, and others), troubleshooting common SPF and DMARC errors, and translating RFC-level specifications into practical deployment procedures for IT administrators.","image":"https://media.mailhop.org/dmarcreport/images/team/vishal-lamba.jpg","knowsAbout":["SPF Vendor Configuration","Email Platform Integrations","SPF Troubleshooting","Technical Documentation","Step-by-Step Guides"],"worksFor":{"@type":"Organization","name":"DMARC Report","url":"https://dmarcreport.com"},"sameAs":["https://www.linkedin.com/in/vishal-lamba/"]},"publisher":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138898167","https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.g2.com/products/dmarc-report/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc","https://www.trustradius.com/products/duocircle/reviews"],"aggregateRating":{"@type":"AggregateRating","ratingValue":"4.8","reviewCount":"470","bestRating":"5","worstRating":"1","url":"https://www.g2.com/products/dmarc-report/reviews"},"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://dmarcreport.com/support/"},"knowsAbout":["DMARC","DMARC Reporting","DMARC Aggregate Reports","DMARC Forensic Reports","Sender Policy Framework","DKIM","Email Authentication","Email Security","DNS Management","Email Deliverability"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://dmarcreport.com/blog/new-clickfix-scam-dental-practice-banned-uk-mps-targeted/"},"articleSection":"foundational","keywords":"dkim, DMARC, email security, News, SPF","wordCount":1040,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/dmarcreport/images/2022/04/dmarc-alignment-6379.jpg","caption":"New ClickFix Scam, Dental Practice Banned, UK MPs Targeted","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}]
```
```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://dmarcreport.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://dmarcreport.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://dmarcreport.com/foundational/"},{"@type":"ListItem","position":4,"name":"New ClickFix Scam, Dental Practice Banned, UK MPs Targeted","item":"https://dmarcreport.com/blog/new-clickfix-scam-dental-practice-banned-uk-mps-targeted/"}]}
```