Opera’s new Paste Protect feature stops the clipboard attack your antivirus can’t catch


Most online scams are easy enough to spot once you know what to look for. Fake login pages, suspicious attachments, or urgent wire transfer requests are dead giveaways. But ClickFix doesn’t look like any of them. It presents itself as a solution, and it asks you to do something so routine that few people think twice about it.

The technique was behind more than 53 percent of malware loader incidents last year, according to cybersecurity firm Huntress, and no major browser had a native defense against it until now. Opera is fixing that with a new feature called Paste Protect.

Why ClickFix slips past your computer’s existing defenses

A typical ClickFix attack begins on a webpage that claims something has gone wrong, like a video that won’t play or a CAPTCHA that keeps failing. The page then walks you through fixing it, which involves copying a command and running it on your computer. That command can install malware, steal saved passwords, or give an attacker remote access to your device.

ClickFix attacks are so effective because you are the one carrying out these actions, instead of an external threat that antivirus software is built to detect. A command you paste into the terminal doesn’t fit that profile, and your clipboard goes unexamined by most security tools.

Another exploit, called clipboard hijacking, uses the same gap differently. Rather than tricking you into copying something harmful, it waits for you to copy something legitimate and quietly swaps it out. For instance, if you copy a bank account number or crypto wallet address and paste it somewhere, what actually gets pasted may belong to an attacker. Opera’s Paste Protect is designed to block both of these attacks.

What Paste Protect actually does

In a blog post, Opera explains that Paste Protect consists of two distinct components. The first, Hijack protection, has been part of Opera since 2021, and it monitors your clipboard for unauthorized changes made by external applications. If something tries to swap out what you copied without your knowledge, it gets caught before you paste.

The newer addition is Injection protection. It screens clipboard content in real time and checks it against patterns commonly associated with malicious scripts on Windows, macOS, and Linux. When something is flagged, the copy action stops immediately, and a warning pop-up appears explaining what was caught. A red icon also shows up in the address bar, and you can expand the alert to see the first 120 characters of the blocked content.

Start safer with Opera One.

Meet Paste Protect: Opera’s unique feature that blocks suspicious clipboard attacks before you click paste.

Built into Opera One, for a more protected browsing experience from the first tab. pic.twitter.com/KqsDoqH9W5

— Opera (@opera) July 2, 2026

Paste Protect is enabled by default on the desktop version of Opera, so you don’t need to change any settings to safeguard yourself from ClickFix attacks. If you’re a developer who regularly copies commands from trusted sources like GitHub, you can override the block with a five-second hold, or permanently whitelist specific websites through the Privacy and Security section in Opera’s settings.

No other major browser currently offers anything comparable natively. Chrome users can install third-party extensions like ClickFix Block to get some level of protection, but that requires knowing the threat exists in the first place. For now, Paste Protect makes Opera the only major browser where the protection is there by default.



Source link

Leave a Reply

Subscribe to Our Newsletter

Get our latest articles delivered straight to your inbox. No spam, we promise.

Recent Reviews


YouTube has an AI slop problem, and its crackdown is catching legitimate creators in the crossfire. Faceless channels, where no human host ever appears on screen, have existed for years and are not inherently AI-generated.

Many are run by solo creators who simply prefer to stay anonymous. The problem is that AI tools made it easy to flood the platform with low-effort faceless content at scale, and YouTube’s algorithm is now penalizing the format as a whole.

How bad is the AI slop problem on YouTube?

A Kapwing study found that roughly 21% of the first 500 videos recommended to a new YouTube account were classified as AI slop, while 33% fell into a broader brainrot category. The problem extends to children, too, as more than 40% of YouTube Shorts recommended to kids in a 15-minute session contained low-quality AI content.

YouTube’s response has been to tweak its algorithm to favor videos with real human faces on camera, which is hitting faceless creators even when their content is entirely human-made.

How is YouTube tackling its AI slop problem?

YouTube is now testing a new pop-up on mobile that asks viewers to rate whether a video feels like AI slop, on a scale from “not at all” to “extremely.” The idea sounds reasonable, but crowdsourcing AI detection has real problems. People are bad at spotting AI content, and they are getting worse at it as AI capabilities continue to improve.

There are also legitimate concerns that YouTube could use this viewer feedback as training data for its own AI models, potentially making future AI-generated content even harder to spot.

🚨 Did you just see what YouTube did?

YouTube isn’t banning AI slop.. They’re making you label it so they can train their next model to not look like slop.

Read that again…

You flag the bad AI content. YouTube collects it. Google feeds it into Veo 4… Then next year their… https://t.co/8UC2J3mjjv pic.twitter.com/mIrTChqC1b

— Tuki (@TukiFromKL) March 17, 2026

Meanwhile, faceless creators are scrambling to adapt. According to The Hollywood Reporter, some are hiring cheap on-camera hosts through platforms like Fiverr and Upwork. Others are doubling down on niche educational content, which has held up better than broad content farms.

The AI text-to-video space is still valued at enormous sums, with Higgsfield AI alone sitting at $1 billion, but on YouTube, the math for faceless creators is getting harder to work out every month.



Source link