Three popular plugins served malicious JavaScript through a compromised CDN.
This week’s recap covers exploited flaws, supply chain attacks, phishing kits, AI lures, macOS stealers, urgent CVEs, tools, ...