Clipboard Poisoning [Link]

June 07, 2016 by Gabe | [mmd] | ℳ↫

From Malwarebytes

Not so fast. Enter Dylan Ayrey, who discovered a way to use JavaScript to inject malicious commands into a copied shell script. On his proof-of-concept webpage, copying the following innocuous shell command and pasting it into the Terminal results in something completely different

Browsers ruin everything.