new blog post - clickfix

src/blog/content/moveup_2026.md

@@ -0,0 +1,46 @@
+---
+title: "Move Up 2026 - Chiseled images zijn klein en veilig, maar zijn ze ook deterministisch?"
+date: 2026-05-16T13:41:39+02:00
+draft: false
+comments: false
+
+disableShare: true
+excludeFromRSS: true
+
+cover:
+  hidden: true # hide everywhere but not in structured data
+  hiddenInList: true # hide on list pages and home
+  hiddenInSingle: true # hide on single page
+---
+
+Thank you for attending my session "Chiseled images zijn klein en veilig, maar zijn ze ook deterministisch?" at 4Dotnet's Move Up event on 21 May 2026!
+
+
+## Blog posts about building OCI images
+
+If this list is empty, the blog will come this month, so stay tuned for more content about building OCI images using Apko and Melange.
+
+{{< list_by_tag oci >}}
+
+## Did you like my session?
+
+If you liked my session and content, please consider following me on LinkedIn:
+
+- [Mart de Graaf - LinkedIn](https://www.linkedin.com/in/mart-de-graaf/).
+- Or listen to my Dutch podcast: 
+  - On Spotify [Oogkleppen](https://open.spotify.com/show/0OxBkd46JgozAAWFjudLON?si=sEpfHzIaSxO_G25oFBUCkA)
+  - On Apple Podcasts [Oogkleppen](https://podcasts.apple.com/nl/podcast/oogkleppen/id1863072206)
+  - Or other podcast platforms search for "Oogkleppen".
+
+## Apko melange demo
+
+You can find the demo code on GitHub: [GitHub - martdegraaf/waf-in-action](https://github.com/martdegraaf/waf-in-action)
+Presentation can be found in the same repository.
+
+## QR code to share
+
+Link to this page: {{% ref path="/moveup_2026" %}}
+
+{{< qr >}}
+{{% ref path="/moveup_2026" %}}
+{{< /qr >}}

src/blog/content/posts/help-i-got-fooled-by-a-clickfix/index.md

@@ -0,0 +1,56 @@
+---
+title: "Help I Got Fooled by a Clickfix"
+slug: "help-i-got-fooled-by-a-clickfix"
+date: 2026-05-20T20:48:44+02:00
+publishdate: 2026-05-20T20:48:44+02:00
+draft: false
+author: ["Mart de Graaf"]
+tags: ["Security", "Cybersecurity", "ClickFix", "AdGuard Home", "HaGezi"]
+summary: "In this blog post, I share my experience of falling victim to a ClickFix attack and how to protect yourself and your family from similar threats."
+# Toc
+ShowToc: true
+TocOpen: true
+UseHugoToc: false
+
+# Meta settings
+ShowReadingTime: true
+ShowLastModified: false
+ShowWordCount: true
+
+cover:
+    image: "clickfix.png" # image path/url
+    alt: "Help I Got Fooled by a Clickfix" # alt text
+    caption: "Help I Got Fooled by a Clickfix" # display caption under cover
+    relative: true # when using page bundles set this to true
+    hidden: false # only hide on current single page
+---
+
+On my free day i received a message on my work account my laptop was isolated because of ransomware. I was confused because i thought i didn't do anything wrong. After some investigation i found out that i got fooled by a ClickFix. In this blog post i will share my experience and what i learned from it, and what you can do to protect yourself and family from similar attacks.
+
+## What is a ClickFix?
+
+A ClickFix is a type of cyber attack that tricks users into executing malicious code on their own devices. It typically involves a fake error message, such as a fake captcha or an update prompt, that convinces the user to copy and paste a script into the Windows 'Run' dialog (Win + R). This can lead to unauthorized access, data theft, or other harmful consequences.
+
+![ClickFix](clickfix.png)
+
+## How did you find out you were a victim of a ClickFix?
+
+For the podcast Oogkleppen i was scouting people to interview. I got told to get somebody who has built up a company at a young age. I found the person on LinkedIn and reached out in DM. After the person agreed I went to their website to find out more about them. Their website got hacked and was showing a fake captcha. I was sleepy and enthusiastic about the interview, so I didn't think twice and copied the script into the 'Run' dialog. After that I got a message that my computer was Isolated by the Security Operations Team. I had 6 hours wasted because they needed to reinstall my computer.
+
+## Feeling stupid
+
+The security engineer told me to not feel stupid, but you know, you will feel stupid after seeing what you did. I want to prevent people making the same mistake, that's why I am sharing my experience. 
+
+## Protecting Yourself and Your Family
+
+I have Home Assistant running. On Home Assistant there is a thing called 'AdGuard Home' which is a network-wide ad blocker. It helps the kids to not see ads while playing games on tablets. To block ClickFixes, the security engineer told me to include more blocklists especially the ones from 'HaGezi'. This is done easily by adding the blocklists to AdGuard Home. By doing this, I can prevent my family from falling victim to similar attacks in the future.
+
+![AdGuard](adguard.png)
+
+The security engineer noticed that the domain even changed every day, HaGezi's list blocked that domain as well. The new domain was just registered, so that was a real sneaky strategy.
+
+## Conclusion
+
+I learned a lot, wasting 6 hours on letting the laptop reinstall and feeling stupid. Let's make sure that you don't put anything in the Run window you don't trust and block those domains.
+
+- [HaGezi DNS Blocklists on GitHub](https://github.com/hagezi/dns-blocklists)