Malicious sites have been leveraged to redirect to a CAPTCHA, with clicking the "I'm not a robot" button followed by the copying and execution of malicious code prompting the distribution of the Lumma infostealer.
Article Link: Phony CAPTCHAs exploited in Lumma, Amadey trojan campaign | SC Media