The FileFix campaign uses fake Facebook security alerts to trick users into running a Go-based loader that installs the StealC infostealer, seeing a massive 517% increase in activity. Attackers cleverly hide malicious code within AI-generated images and bypass traditional phishing methods by having victims execute commands directly. StealC v2 targets a wide range of sensitive data, including browser credentials, cryptocurrency wallets, and cloud accounts.