News

CSO Online1d
How phishers are weaponizing SVG images in zero-click, evasive campaigns
Seemingly harmless SVGs are packed with malicious JavaScript for a phishing redirect to actor-controlled URLs.
SecurityWeek1d
Threat Actors Use SVG Smuggling for Browser-Native Redirection
The malicious code is hidden within a CDATA section of the SVG file and relies on a static XOR key to decrypt a payload at ...
Infosecurity Magazine1d
Threat Actors Exploit SVG Files in Stealthy JavaScript Redirects
Once opened in a browser, the code decrypts a secondary payload using a static XOR key and then redirects the user to an ...
Search Engine Roundtable9y
Google AdWords Image Ads Bug With Embedded SVG Images
Google has confirmed a bug within the Google AdWords Image Ads feature, with advertisers who try to upload SVG images as embedded images.Cassie from Google confirmed the bug last night saying: We hear ...