Researchers Expose PWA JavaScript Attack That Redirects Users

A new campaign uses malicious JavaScript injections to redirect site visitors on mobile devices to a Chinese adult-content Progressive Web App. "While the payload itself is nothing new (yet another adult gambling scam), the delivery method stands out," researcher Himanshu Anand said.