+- t3mujin -- 6d -------------------------------------------------------------------------------------------------[...]+ | | | "(…) the attacker must convince the target to manually toggle the community plugin" | | | | Not that hard, enabling this is one of the first things an Obsidian user does. Having a thriving community of addons | | means this is inevitable. | | | | thehackernews.com/2026/04/o… https://thehackernews.com/2026/04/obsidian-plugin-abuse-delivers.html | | | +-- reply --------------------------------------------------------------------------------------------------------- ---+"(…) the attacker must convince the target to manually toggle the community plugin" Not that hard, enabling this is one of the first things an Obsidian user does. Having a thriving community of addons means this is inevitable. thehackernews.com/2026/04/o… https://thehackernews.com/2026/04/obsidian-plugin-abuse-delivers.html
thread · root 938b4d8c…b4e5 · depth 1 · · selected 938b4d8c…b4e5
thread
root 938b4d8c…b4e5 · depth 1 · · selected 938b4d8c…b4e5
"(…) the attacker must convince the target to manually toggle the community plugin"Not that hard, enabling this is one of the first things an Obsidian user does. Having a thriving community ofaddons means this is inevitable.thehackernews.com/2026/04/o… https://thehackernews.com/2026/04/obsidian-plugin-abuse-delivers.html