News

Watch where you click - adult sites are hiding clickjacking malware in images, and all for Facebook likes

Malicious SVG files on adult websites hide JavaScript that hijacks Facebook sessions, secretly liking posts, and potentially ...
Threat Post11y

PNG Image Metadata Found Leveraging iFrame Injections - Threatpost

Researchers have discovered a relatively new way to distribute malware that relies on reading malicious obfuscated JavaScript code stored in a PNG file’s metadata to trigger iFrame injections.