Published on 12/07/2023 – Last Updated on 12/08/2023 by OTC
Hackers like Google Tag Manager: millions of sites use it, and they can inject custom scripts and HTML code via a script from the highly trusted domain googletagmanager.com. In order to create a new container and abuse Google Tag Manager, all they need is a Google account (and we all know how easy it is to get one).
Given the widespread use of GTM and the inherent trust websites put in scripts from Google, this tactic presents a significant security risk.
Comments