Originally posted by schmidtbag
View Post
Like: <video src="evil.mp4" height="0" width="0" autoplay muted />
Even a trusted website can be hacked and changed into do this. Especially with all these third-party JavaScript dependencies, libraries and CDNs.
Comment