Once Benign Polyfill.io Code Now Exposes 100k+ Websites to Attack

June 26, 2024 | Over 100,000 websites using Polyfill JS are now vulnerable to malicious redirects to sports betting and pornography sites. Sansec researchers found that the popular open-source code, recently acquired by Funnull, generates malicious activities based on HTTP headers. This highlights the risks of relying on third-party open-source projects.

[Read the full article]

Newsletter Signup

Stay up-to-date on the latest resources and news from CRITICALSTART.
Benchmark your cybersecurity against peers with our Free Quick Start Risk Assessments tool!
This is default text for notification bar