Cyber Defense Magazine

The Common Goods and Shared Threats of the Software Supply Chain

Perhaps the defining quality of the software supply chain is complexity. Amid the countless lines of code that the modern world runs on there is potentially infinite scope for mistakes, ...
GitHub

Font Awesome v6 #173574

After discussion with FP/AL and other product owners, we concluded that it is not worth it to migrate to fontawesome v5. The design of the new icons is too blunt, not sharp enough. Some icons ...
Bleeping Computer

Latest Polyfill.io news

The recent large scale supply chain attack conducted via multiple CDNs, namely Polyfill.io, BootCDN, Bootcss, and Staticfile that affected up to tens of millions of websites has been traced to a ...
thecyberexpress

Polyfill Supply Chain Attack Could Affect 4% of the Web; Shutdowns, DDoS Attacks Among Spillover

Claims, counterclaims, website shutdowns, redirections and DDoS attacks were among the highlights (or lowlights) as news of the Polyfill supply chain attack entered its second day. After Polyfill(.)io ...
Bleeping Computer

Polyfill claims it has been 'defamed', returns after domain shut down

The owners of Polyfill.io have relaunched the JavaScript CDN service on a new domain after polyfill.io was shut down as researchers exposed it was delivering malicious code on upwards of 100,000 ...
The Hacker News

Over 110,000 Websites Affected by Hijacked Polyfill Supply Chain Attack

Google has taken steps to block ads for e-commerce sites that use the Polyfill.io service after a Chinese company acquired the domain and modified the JavaScript library ("polyfill.js") to redirect ...
GitHub

Remove external javascript inclusion from cloudflare cdn.

We are using ASCII doctor for templating our API documentation which internally uses font awesome CSS and highlight JS for styling and syntax high lighting from cloudflare CDN. Need to remove the ...