Particle.news
Download on the App Store

Opera Adds Default Clipboard Guard to Block Malicious Paste Commands

The browser blocks copied commands that can install malware and includes developer whitelists to avoid disrupting legitimate workflows.

Overview

  • Paste Protect, which rolled out Thursday, July 2, 2026, is enabled by default in Opera’s desktop browsers and can be turned off or managed in Settings → Privacy & Security → Paste Protect.
  • The feature combines Opera’s older Hijack Protection with a new Injection Protection that monitors clipboard activity in real time and uses platform-specific rules for Windows, macOS, and Linux.
  • When Paste Protect detects suspicious commands it blocks the copy action, shows a warning and a red address-bar icon, and reveals only the first 120 characters of the blocked content to the user.
  • Developers and confident users can temporarily approve a blocked paste or add sites to an allow-list to avoid repeated interruptions when copying legitimate scripts from sources like GitHub.
  • Opera frames the move as the first major browser-level defense against ClickFix attacks, a social-engineering tactic that Huntress says accounted for more than 53% of malware-loading incidents in 2025, and it complements platform warnings such as Apple’s Terminal paste alerts.