all InfoSec News logo
all InfoSec News - Your InfoSec news aggregator
Log in Sign up
all InfoSec News

Supply chain attack compromises 100,000 websites via polyfill.io domain takeover

Add to bookmarks
June 26, 2024, 10:34 p.m. | Duncan Riley

Security – SiliconANGLE siliconangle.com


About 100,000 sites have potentially been compromised in a supply chain attack following an alleged Chinese firm’s takeover of a popular open-source library. The compromise involved the acquisition of polyfill.io, a domain name linked to the open-source Polyfill project, in February. Polyfill.io is a service that automatically provides the necessary polyfills — pieces of code […]

The post Supply chain attack compromises 100,000 websites via polyfill.io domain takeover appeared first on SiliconANGLE.

acquisition attack china chinese compromise compromised cyber cybersecurity domain domain name february hacking library name polyfill polyfill.io popular project sansec security service supply supply chain supply chain attack takeover the-latest websites

Visit resource

More from siliconangle.com / Security – SiliconANGLE

Qualys warns of OpenSSH vulnerability researchers are calling ‘extremely dangerous’ 6 days, 7 hours ago | siliconangle.com
bad calling code cve-2024-6387 +20
LogRhythm boosts security with data intelligence, AWS integration and compliance updates 6 days, 19 hours ago | siliconangle.com
amazon amazon web services aws aws s3 +33
SentinelLabs uncovers new CapraRAT spyware targeting Android users 6 days, 20 hours ago | siliconangle.com
access access trojan actor android +31
Remote access provider TeamViewer discloses breach attributed to Russian hackers 1 week, 2 days ago | siliconangle.com
access a network application apt29 +26
CISA joint guidance warns of memory safety vulnerabilities in open-source projects 1 week, 3 days ago | siliconangle.com
agency australian signals directorate canadian centre for cyber security cisa +27
Progress Software discloses critical vulnerability in MOVEit file transfer service 1 week, 3 days ago | siliconangle.com
critical critical vulnerability cyber cybersecurity +23
Odaseva nabs $54M for its Salesforce data protection platform 1 week, 3 days ago | siliconangle.com
announcement back back up backup +26
Vulnerability detection provider PortSwigger raises $112M 1 week, 3 days ago | siliconangle.com
brighton park burp suite capital cyber +22
Permissions management startup AuthZed raises $12M to accelerate its strategic expansion 1 week, 3 days ago | siliconangle.com
accelerate amplify partners authzed avise +26

Jobs in InfoSec / Cybersecurity

Find Talent

Principal Architect - LINUX - Active Top Secret Required

@ General Dynamics Information Technology | USA DC Washington - Customer Proprietary (DCC076)
View on infosec-jobs.com

Expert SOAR (CORTEX)

@ Alter Solutions | PARIS, France
View on infosec-jobs.com

Program Management Analyst

@ Peraton | Arlington, VA, United States
View on infosec-jobs.com

Gestion des menaces et des vulnérabilités

@ Alter Solutions | Paris, France
View on infosec-jobs.com

Senior IAM Security Engineer

@ WEX | Brazil - Remote Office
View on infosec-jobs.com

Senior Information Security Engineer

@ Ameriprise Financial Services | 11071 Ameriprise India - Hyderabad
View on infosec-jobs.com