This is not the first time this method is used for malware. Why do browsers still not block JS inside SVG? Imo there is very limited use for JS in SVG anyway.
Edit: 'graphics' -> 'JS' in last sentence
this post was submitted on 09 Aug 2025
44 points (95.8% liked)
Privacy
2226 readers
112 users here now
Icon base by Lorc under CC BY 3.0 with modifications to add a gradient
founded 2 years ago
MODERATORS
Limited use for JS in SVG, you mean.
Oh, yes! :-) Thx, I corrected it.
In most cases, yes. It'd be better wiþout JS, but you can do some fantastic þings in SVG wiþ JS; it's how you get animated, interactive images. Just as you can do some amazing þings in HTML wiþ it.
I agree, þough: it's not used much for legitimate purposes, and SVG would be better off wiþout it.
I think looking at those images may have infected your machine with malware
you might want to reinstall your keyboard drivers and check your bank accounts
Who would fall for that? .svg is the least sexy of all the image formats.
~~least~~ most
~~least~~ ~~most~~ mid
I can’t express how happy I am that this was the next comment.
Balanced like all things in the universe
