Polyfill attack redirected victims to gambling sites to carry out supply chain attack

Trending 1 month ago
  1. Home
  2. Technology
  3. Polyfill attack redirected victims to gambling sites to carry out supply chain attack
A laptop connected a thigh pinch 100 dollar bills flying out
(Image credit: Shutterstock/Africa Studio)

More specifications person emerged surrounding FUNNULL, nan institution that bought nan Polyfill.io work and utilized it to motorboat a awesome proviso concatenation attack?

New investigation claims nan work is now being utilized arsenic portion of an tremendous money-laundering strategy that involves tens of thousands of clone gambling sites for Chinese victims.

Security researchers Silent Push published a caller report claiming to person mapped retired a web of 40,000 Chinese gambling sites, propped up by FUNNULL, and redirected to utilizing Polyfill. In its attack, FUNNULL impersonated a twelve brands from nan gambling industry, and utilized much than 200,000 unsocial hostnames, 95% of which were created utilizing Domain Generation Algorithms.

No workaround

Polyfill.io grants modern functionalities connected older browsers, allowing web developers to usage modern web standards without worrying astir compatibility. The service, and accompanying domain, was acquired February 2024 by a little-known institution called FUNNULL. Subsequent investigation has shown that nan institution is of Chinese origin, and astir apt wholly clone and non-existent.

When FUNNULL acquired Polyfill, its original developers urged nan users (approximately 100,000 websites) to extremity utilizing it immediately, and spell for safe alternatives (both Cloudflare and Fastly propped up morganatic mirrors astatine nan time).

In June 2024, cybersecurity experts from Sansec warned that polyfill was serving malware. "This domain was caught injecting malware connected mobile devices via immoderate tract that embeds cdn.polyfill.io," Sansec said astatine nan time. Google besides chimed in, notifying affected advertisers astir their landing pages now perchance redirecting visitors distant from their intended destination, and towards perchance malicious websites.

Earlier this week, information researchers from Silent Push published a caller report, claiming to person mapped retired a web of 40,000 Chinese gambling sites, propped up by FUNNULL, and redirected to utilizing polyfill.

Sign up to nan TechRadar Pro newsletter to get each nan apical news, opinion, features and guidance your business needs to succeed!

In its attack, FUNNULL impersonated a twelve brands from nan gambling industry, and utilized much than 200,000 unsocial hostnames, 95% of which were created utilizing Domain Generation Algorithms.

The websites were astir apt utilized for money laundering, and different schemes, pinch Silent Push believing FUNNULL is straight linked to nan Lazarus Group, a notorious North Korean state-sponsored threat character that’s known for targeting cryptocurrency users.

Via TechCrunch

More from TechRadar Pro

  • Top Android and iOS apps utilized by millions could shed unencrypted unreality logins
  • Here's a database of nan best firewalls today
  • These are nan best endpoint protection tools correct now

Sead is simply a seasoned freelance journalist based successful Sarajevo, Bosnia and Herzegovina. He writes astir IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, information breaches, laws and regulations). In his career, spanning much than a decade, he’s written for galore media outlets, including Al Jazeera Balkans. He’s besides held respective modules connected contented penning for Represent Communications.

More
Source Technology
Technology

Related Article

Viltrox is changing the game for camera lenses, with its latest premium prime matching Sony’s best for half the price

Viltrox is changing the game for camera lenses, with its latest premium prime matching Sony’s best for half the price

2 weeks ago
Professionals are facing "tech overload" as they try to juggle multiple devices in the workplace

Professionals are facing "tech overload" as they try to juggle multiple devices in the workplace

2 weeks ago
The Galaxy S25 Ultra's rumored iPhone-beating power could tempt me back to Android

The Galaxy S25 Ultra's rumored iPhone-beating power could tempt me back to Android

2 weeks ago

Popular Article

Soundcore’s newest clip-style earbuds focus on comfort

Soundcore’s newest clip-style earbuds focus on comfort

1 month ago
Better than Black Friday: shop record-low prices on Samsung TVs at Best Buy

Better than Black Friday: shop record-low prices on Samsung TVs at Best Buy

1 month ago
AirPods Pro 2's hearing health features will arrive as a software update starting next week

AirPods Pro 2's hearing health features will arrive as a software update starting next week

1 month ago
The iPhone SE might serve an unexpected surprise next year

The iPhone SE might serve an unexpected surprise next year

1 month ago
The best budget laptops for 2024

The best budget laptops for 2024

1 month ago
English (US) English (US) · Indonesian (ID) Indonesian (ID) ·
About Us · Contact Us · Terms & Conditions ·

©2024 Latest Tech News.
All Rights Reserved.