❌

Normal view

Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

15 February 2026 at 16:17
Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into executing malicious JavaScript in their browser, allowing attackers to hijack Bitcoin swap transactions and redirect funds to attacker-controlled wallets. [...]

Windows 11 Notepad flaw let files execute silently via Markdown links

12 February 2026 at 00:15
Microsoft has fixed a "remote code execution" vulnerability in Windows 11 Notepad that allowed attackers to execute local or remote programs by tricking users into clicking specially crafted Markdown links, without displaying any Windows security warnings. [...]
❌