The majority of code enthusiasts copy-paste frequently used codes found online. Hackers can covertly replace the contents of what you copied from the web.
Gabriel Friedlander, founder of security awareness training platform Wizer, demonstrated an apparent but surprising hack that will cause you to think twice before copying-pasting commands from the web into your application.
In an article published by Friedlander, he demonstrated how hackers can easily trick victims:
This is done by the use of the JavaScript code given below, referred to as an event listener:
“This is why you should NEVER copy paste commands directly into your terminal,” warns Friedlander.
“This attack is very simple but also very harmful.”
Continue reading BleepingComputer or Wizer-training blog
