Hackers Exploit SVG Files with Malicious JavaScript to Deploy Malware on Windows
Originally Published 5 months ago — by Ars Technica
Malicious actors are embedding obfuscated exploit code inside SVG files on adult websites, which, when decoded, deploy JavaScript that hijacks Facebook 'Like' actions without user consent, exploiting known vulnerabilities and recurring abuse on WordPress sites.