National Cyber Warfare Foundation (NCWF)

Funnull Polyfill supply chain attack (Campaign)
0 user ratings		2026-01-16 10:46:39
milo
Attacks
A Chinese company named Funnull acquired the Polyfill domain and GitHub repo, and inserted malware into polyfill.js that redirected users to gambling websites. Further pivoting revealed that Funnull had exposed a CloudFlare API key that linked the company to several CDN provid...

A Chinese company named Funnull acquired the Polyfill domain and GitHub repo, and inserted malware into polyfill.js that redirected users to gambling websites. Further pivoting revealed that Funnull had exposed a CloudFlare API key that linked the company to several CDN provid...

Source: Wiz
Source Link: https://threats.wiz.io/all-incidents/funnull-polyfill-supply-chain-attack

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Attacks


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.