all InfoSec News logo
all InfoSec News - Your InfoSec news aggregator
Log in Sign up
all InfoSec News

Over 380,000+ Hosts Embedding Polyfill JS script Linking to Malicious Domain

Add to bookmarks
July 4, 2024, 7:29 a.m. | Divya

GBHackers On Security gbhackers.com

Over 380,000 web hosts have been found embedding a compromised Polyfill.io JavaScript script, linking to a malicious domain. This supply chain attack has sent shockwaves through the web development community, highlighting the vulnerabilities inherent in widely used open-source libraries. Polyfill.js, a popular tool designed to provide modern functionalities for older web browsers, was the target […]


The post Over 380,000+ Hosts Embedding Polyfill JS script Linking to Malicious Domain appeared first on GBHackers on Security | #1 Globally …

attack community compromised cyber security development domain found hosts javascript libraries malicious polyfill polyfill.io polyfill.js popular script supply supply chain supply chain attack the web tool vulnerabilities web web development

Visit resource

More from gbhackers.com / GBHackers On Security

The Problem With Bug Bounties 1 day, 3 hours ago | gbhackers.com
article bounties bug bug bounties +13
Cloudflare Details 1.1.1.1 Service Outage Incident 2 days, 1 hour ago | gbhackers.com
1.1.1 1.1.1.1 bgp border +19
Mekotio Banking Trojan Attacking American Users To Steal Financial Data 2 days, 1 hour ago | gbhackers.com
american banking banking trojan brazil +20
Kimusk’s HappyDoor Executed Via regsvr32 File To Evade Detection 2 days, 2 hours ago | gbhackers.com
advanced change countries cyber +26
Hackers Compromised Ethereum’s Mailing List to Drain Their Crypto Funds 2 days, 3 hours ago | gbhackers.com
action attack breach campaign +20
Threat Actor Claiming 2FA Bypass Vulnerability in HackerOne Bug Bounty Platform 2 days, 6 hours ago | gbhackers.com
2fa 2fa bypass account actor +19
Hackers Abused Twilio API To Verify Phone Numbers used For MFA 2 days, 9 hours ago | gbhackers.com
access accounts api attackers +29
New ‘Pryx’ Ransomware Hijacked 30,000 University Applications 3 days, 5 hours ago | gbhackers.com
announcement applications attack college +18
FakeBat Malware Weaponizing AnyDesk, Zoom, Teams & Chrome 3 days, 5 hours ago | gbhackers.com
access anydesk applications chrome +16

Jobs in InfoSec / Cybersecurity

Find Talent

Cyber Security Project Engineer

@ Dezign Concepts LLC | Chantilly, VA
View on infosec-jobs.com

Cloud Cybersecurity Incident Response Lead

@ Maveris | Martinsburg, West Virginia, United States
View on infosec-jobs.com

Sr Staff Security Researcher (Malware Research - Antivirus Systems)

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

Identity & Access Management, Senior Associate

@ PwC | Toronto - 18 York Street
View on infosec-jobs.com

Senior Manager, AI Security

@ Lloyds Banking Group | London 10 Gresham Street
View on infosec-jobs.com

Senior Red Team Engineer

@ Adobe | Remote California
View on infosec-jobs.com