Loading...
Loading...
Browse all stories on DeepNewz
VisitSupply Chain Attack on Polyfill.io and WordPress Plugins Impacts Over 100,000 Websites
Jun 26, 2024, 05:06 AM
A significant supply chain attack has impacted over 100,000 websites using the Polyfill.io service. The attack began after the domain was acquired by the Chinese company 'Funnull,' which injected malicious code into the service. This code redirected visitors to unwanted sites without the website owners' knowledge. The attack has also affected WordPress plugins, with as many as 36,000 sites compromised. Security experts are advising immediate removal of the Polyfill.io code from affected websites to mitigate the risk. The cdn.polyfill.io domain is currently being used in the attack, and experts have called on Namecheap to take action. The attack was reported by darkreading.
View original story
Yes • 50%
No • 50%
Over 60% • 25%
40-60% • 25%
20-40% • 25%
Less than 20% • 25%
1 • 25%
2 • 25%
3 • 25%
4 or more • 25%
Yes • 50%
No • 50%
Less than 10 million • 25%
10-20 million • 25%
20-30 million • 25%
More than 30 million • 25%
Yes • 50%
No • 50%
Yes • 50%
No • 50%
Less than 10% • 25%
10% to 25% • 25%
25% to 50% • 25%
More than 50% • 25%
0-10 • 25%
11-50 • 25%
51-100 • 25%
101+ • 25%
0-10 • 25%
11-50 • 25%
51-100 • 25%
More than 100 • 25%
Taking legal action against Funnull • 33%
Collaborating with affected parties • 33%
Issuing patches and advisories • 33%
Polyfill.io service • 33%
Both equally • 33%
Compromised WordPress plugins • 33%