One Script Tag Just Pwn’d Over 100,000 Websites

Polyfill dot io is compromised. The results are terrifying. Everyone from Hulu to The Guardian to Intuit is currently pwn’d.

SOURCES
https://sansec.io/research/polyfill-supply-chain-attack
https://x.com/rich_harris/status/1805700433262121411
https://x.com/Cloudflare/status/1805758922919231992
https://blog.cloudflare.com/automatically-replacing-polyfill-io-links-with-cloudflares-mirror-for-a-safer-internet

Check out my Twitch, Twitter, Discord more at https://.gg

S/O Ph4se0n3 for the awesome edit 🙏

Leave a Reply

Your email address will not be published. Required fields are marked *