Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into ...

WordPress plugin with 900k installs vulnerable to critical RCE flaw

A critical vulnerability in the WPvivid Backup & Migration plugin for WordPress, installed on more than 900,000 websites, can be exploited to achieve remote code execution by uploading arbitrary files ...
TechJuice

Security Alert: “AgreeTo” Outlook Add-In Hijacked to Steal 4,000+ Passwords

Security researchers uncover the first malicious Outlook add-in, hijacked to steal 4,000+ Microsoft credentials in new supply chain attack.
The Windows Club

WordPress starts adding noopener noreferrer tags automatically

Did you notice that noopener noreferrer tags are being added to both external AND internal links that are set to open in a new tab (target_blank) in your WordPress blog? I noticed this happening on my ...
GitHub

WordPress plugin adding Gutenberg block for embedding STL previews

Adds STL as a media type for uploads. Adds STL as a filter in media browser for picking items. Provides editor block for embedding a viewer, based on viewstl plugin. ** Editor block uses media browser ...
GitHub

Dash-Industry-Forum/dash.js

dash.js is a JavaScript based implementation for the playback of MPEG DASH content in browser based environments that support the Media Source Extensions and the Encrypted Media Extensions.