SmartApeSG is running an active ClickFix campaign that social-engineers Windows users into manually executing malicious commands via the Windows Run dialog or PowerShell, bypassing endpoint security controls through user-initiated execution. The campaign deploys NetSupport Manager as a persistent RAT, abusing a legitimately signed remote administration tool to establish covert, long-term access. No CVE exists — this is a user-execution and tool-abuse campaign against the Windows platform.