all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Polyfill.io supply chain attack hits 100,000+ websites — all you need to know

Add to bookmarks
June 26, 2024, 2:23 p.m. | axsharma@sonatype.com (Ax Sharma)

Sonatype Blog blog.sonatype.com




In a significant supply chain attack, over 100,000 websites using Polyfill[.]io, a popular JavaScript CDN service, were compromised.

attack cdn compromised javascript nexus firewall npm popular service supply supply chain supply chain attack using vulnerabilities websites

Visit resource

More from blog.sonatype.com / Sonatype Blog

Software composition analysis (SCA): A beginner's guide 2 days, 21 hours ago | blog.sonatype.com
accelerate analysis applications beginner +18
Polyfill.io supply chain attack hits 100,000+ websites — all you need to know 3 days, 18 hours ago | blog.sonatype.com
attack cdn compromised javascript +10
Exploit creator selling 250+ reserved npm packages on Telegram 3 days, 18 hours ago | blog.sonatype.com
amazon amazon web services aws coming +23
Maven Central and the tragedy of the commons 3 days, 21 hours ago | blog.sonatype.com
central commons community concept +9
DORA ICT risk management framework: What to know 6 days, 1 hour ago | blog.sonatype.com
act analysis basic compliance +25
Start building your CRA compliance strategy now 1 week, 5 days ago | blog.sonatype.com
act building compliance cra +22
NIS2 readiness: Ensure compliance with the EU Cybersecurity Directive 2 weeks, 3 days ago | blog.sonatype.com
community compliance cybersecurity cybersecurity directive +14
'cors-parser' npm package hides cross-platform backdoor in PNG files 2 weeks, 4 days ago | blog.sonatype.com
backdoor cors cross-origin download +21
Uncovering the invisible threat: Why your network may still be at risk 2 weeks, 5 days ago | blog.sonatype.com
components developers exposed malicious +9

Jobs in InfoSec / Cybersecurity

Find Talent

Senior Data Governance Consultant (Remote in US)

@ Resultant | Indianapolis, IN, United States
View on infosec-jobs.com

Senior Data & AI Threat Detection Researcher (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Senior Systems Engineer - AWS

@ CACI International Inc | 999 REMOTE
View on infosec-jobs.com

Managing Consultant / Consulting Director / Engagement Lead in Cybersecurity Consulting

@ Marsh McLennan | Toronto - Bremner
View on infosec-jobs.com

Specialist , Fraud Investigation and SecOps

@ Concentrix | Bulgaria - Work at Home
View on infosec-jobs.com

Data Engineer, Mid

@ Booz Allen Hamilton | USA, CA, San Diego (1615 Murray Canyon Rd)
View on infosec-jobs.com