Polyfill supply chain attack hits 100K+ sites
Polyfill supply chain attack hits 100K+ sites
sansec.io Polyfill supply chain attack hits 100K+ sites
The new Chinese owner of the popular Polyfill JS project injects malware into more than 100 thousand sites.
![Polyfill supply chain attack hits 100K+ sites](https://programming.dev/pictrs/image/8bc5e6fb-ac9e-437b-904d-d70dd6e279a7.webp?format=webp&thumbnail=256)
4
crossposts
You're viewing a single thread.
All comments
12
comments
Not many things require a polyfill these days. My guess is a lot of older sites are affected.
8 0 ReplyIntuit uses pollyfill… and a lot of people use that service.
Cloudflare and fastly wouldn’t be setting up mirrors if it weren’t still being used, I can guarantee that.
6 0 Reply
12
comments
Scroll to top