Original Post: Imperva Client-Side Protection Mitigates the Polyfill Supply Chain Attack
A recent website supply chain attack involving the domain cdn.polyfill.io has compromised over 100,000 websites, including those of well-known brands. The domain, acquired by a Chinese company named Funnull, began injecting malicious code into JavaScript polyfills, specifically targeting mobile devices and evading detection. This code redirected users to scam or phishing sites, posing significant security risks.
Imperva swiftly responded to this threat, utilizing their Client-Side Protection solution to identify and protect affected customers. They urge website owners to remove any related scripts, onboard to their Client-Side Protection for ongoing monitoring, and maintain vigilance through cataloging and alerting systems.
Imperva remains committed to customer security, providing tools to mitigate client-side attacks and ensuring data protection by adhering to the latest compliance standards. They offer a 30-day free trial for businesses to safeguard their digital assets against such sophisticated supply chain threats.
Go here to read the Original Post