NATIONAL SECURITY
Polyfill Supply Chain Attack Affects 100,000+ Websites
Polyfill is a popular library that incorporates modern functions supported in web browsers while also supporting older browsers. Earlier this past February, concerns were raised following the acquisition of Polyfill by the China-based content delivery network company, Funnul. Since the acquisition, the domain was caught red-handed injecting malware onto mobile devices via sites that embed cdn[.]polyfill[.]io. Complaints of this were removed almost immediately from the support GitHub repository.