Re: Cross origin?
Yes, exactly that. It would require a phishing or similar attack to first breach security. At which point they are unlikely to decide to prank the user with this, they will install ransomware.
To emulate the subtitle - "The nineties called, they want their benign hackers back."