Polyfill Supply Chain Attack Impacts 100K+ Sites | allinfosecnews.com

July 2, 2024, 5:55 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

On 24 June 2024, cybersecurity company Sansec published a security advisory detailing how an associated Polyfill domain (cdn.polyfill[.]io) was being used to insert malicious code in scripts served to mobile end users in a web supply chain attack. Polyfill is a popular open-source JavaScript library embedded in more than 100,000 websites to provide polyfills, a … Polyfill Supply Chain Attack Impacts 100K+ Sites

Article Link: Polyfill Supply Chain Attack Impacts 100K+ Sites | Arctic Wolf

1 post - …

advisory attack cdn code cybersecurity cybersecurity company domain embedded end javascript june library malicious mobile polyfill popular sansec scripts security security advisory supply supply chain supply chain attack web websites

More from malware.news / Malware Analysis, News and Indicators - Latest topics

[Control systems] ABB security advisory (AV24-369) 2 hours ago | malware.news

abb advisory article canadian +10

In corso campagne di phishing italiane a tema FedEx 4 hours ago | malware.news

article cert delivery fedex +3

CVE-2024-6387 – Shields Up Against RegreSSHion 6 hours ago | malware.news

back code configuration critical +21

5 +1 MEPs to Watch as the New European Parliament Settles in 6 hours ago | malware.news

conservatives elections european parliament far +9

Threat Intelligence Snapshot: Week 27, 2024 7 hours ago | malware.news

access amp find intelligence +14

Defending Against OS Credential Dumping: Threat Landscape, Strategies, and Best Practices 8 hours ago | malware.news

adversaries best practices compromised credential +23

Authy phone numbers accessed by cybercriminals, warns Twilio 8 hours ago | malware.news

api app application application programming interface +19

Dark Web Profile: Brain Cipher 9 hours ago | malware.news

attack attention brain center +24

Taking action against antisemitism – close to 2 000 pieces of content flagged for removal 9 hours ago | malware.news

action coordinated countries enforcement +17

Software Engineer

@ Booz Allen Hamilton | USA, VA, McLean (8283 Greensboro Dr, Hamilton)

View on infosec-jobs.com

SOC Level 1 Engineer

@ Groupon | Remote - India

View on infosec-jobs.com

Senior Technology Auditor (Continuous Process Monitoring)

@ CNA Insurance | US- IL40- Chicago-151N Frankln

View on infosec-jobs.com

Sr. Director, Tech Process Management (ES Risk)

@ Capital One | McLean, VA

View on infosec-jobs.com

AVP, Pre-Sales and Professional Services for Group Benefits & Affinity

@ Manulife | CAN, Ontario, Toronto, 250 Bloor Street East

View on infosec-jobs.com

Software Engineer III

@ Walmart | IN KA BANGALORE Home Office PW II

View on infosec-jobs.com