Cyber Defense Magazine

The Common Goods and Shared Threats of the Software Supply Chain

Perhaps the defining quality of the software supply chain is complexity. Amid the countless lines of code that the modern world runs on there is potentially infinite scope for mistakes, ...
GitHub

Font Awesome v6 #173574

After discussion with FP/AL and other product owners, we concluded that it is not worth it to migrate to fontawesome v5. The design of the new icons is too blunt, not sharp enough. Some icons ...
Bleeping Computer

Latest Polyfill.io news

The recent large scale supply chain attack conducted via multiple CDNs, namely Polyfill.io, BootCDN, Bootcss, and Staticfile that affected up to tens of millions of websites has been traced to a ...
thecyberexpress

Polyfill Supply Chain Attack Could Affect 4% of the Web; Shutdowns, DDoS Attacks Among Spillover

Claims, counterclaims, website shutdowns, redirections and DDoS attacks were among the highlights (or lowlights) as news of the Polyfill supply chain attack entered its second day. After Polyfill(.)io ...
Bleeping Computer

Polyfill claims it has been 'defamed', returns after domain shut down

The owners of Polyfill.io have relaunched the JavaScript CDN service on a new domain after polyfill.io was shut down as researchers exposed it was delivering malicious code on upwards of 100,000 ...
The Hacker News

Over 110,000 Websites Affected by Hijacked Polyfill Supply Chain Attack

Google has taken steps to block ads for e-commerce sites that use the Polyfill.io service after a Chinese company acquired the domain and modified the JavaScript library ("polyfill.js") to redirect ...
GitHub

jsDelivr CDN SSL certificate error

Do you recommend any specific steps to circumvent or fix this issue temporarily while a permanent solution is being worked on? Is there an alternative CDN or method of accessing the library that you ...