Techly NewsGet the app

Get the latest tech news

Hackers Weaponizing SVG Files With Malicious Embedded JavaScript to Execute Malware on Windows Systems


Hackers exploit SVG files to deliver JavaScript malware on Windows, turning images into stealthy phishing tools that bypass standard defenses.

Unlike standard image formats such as JPEG or PNG that store pixel data, SVG files utilize XML-based code to define vector paths, shapes, and text elements. Seqrite security researchers have identified a sophisticated campaign employing this technique, observing attackers distributing malicious SVG files through spear-phishing emails with deceptive subject lines like “Reminder for your Scheduled Event” and attachments named “Upcoming Meeting.svg” or “Your-to-do-List.svg.” The attack demonstrates remarkable technical sophistication, with threat actors leveraging multiple evasion techniques to maintain persistence and avoid detection by traditional security solutions.

Get the Android app

Or read this on r/technology

Read more on:

Photo of Hackers

Hackers

Photo of malware

malware

Photo of windows systems

windows systems

Related news:

News photo

Hackers Went Looking for a Backdoor in High-Security Safes—and Now Can Open Them in Seconds

News photo

Hackers can bypass Microsoft Defender to install ransomware on PCs

News photo

Hackers Clown Trump Education Secretary With ‘Curb Your Enthusiasm’ Music and ‘Corrupt Billionaire’ Heckles

« The Battlefield 6 beta has broken Call of Duty's Steam player count record, surging past half a million concurrents | This puts the BF6 beta at 18th place overall on Steam.
Here Are 3 New iOS 26 Features You Might Have Missed »