Techly NewsGet the app

Get the latest tech news

384,000 sites pull code from sketchy code library recently bought by Chinese firm. Many website admins, it seems, have yet to get memo to remove Polyfill[.]io links.


Many website admins, it seems, have yet to get memo to remove Polyfill[.]io links.

On June 25, researchers from security firm Sansec reported that code hosted on the polyfill domain had been changed to redirect users to adult- and gambling-themed websites. The findings underscore the power of supply-chain attacks, which can spread malware to thousands or millions of people simply by infecting a common source they all rely on. What’s more, the Internet scan performed by Censys found more than 1.6 million sites linking to one or more domains that were registered by the same entity that owns polyfill[.]io.

Get the Android app

Or read this on r/technology

Read more on:

Photo of Chinese

Chinese

Photo of Memo

Memo

Photo of Sites

Sites

Related news:

News photo

A Chinese Space Startup Launched Its New Rocket by Accident

News photo

Chinese Gen AI researchers snagged more patents than everyone else combined since 2013

News photo

Chinese AI Stirs Panic At European Geoscience Society

« Sony Music Goes After Piracy Portal 'Hikari-no-Akari'
AMD Appears To Be Aiming For Good Radeon RDNA4 GPU Support In Linux 6.11 »