Malicious backdoor-deploying JavaScript facilitates widespread WordPress site compromise
News
c/side mentioned in the Media
c/side mentioned in blogs, podcasts, and articles
March 7th, 2025
March 7th, 2025
Tech Radar
Thousands of WordPress sites targeted with malicious plugin backdoor attacks
March 7th, 2025
Channel 2E
WordPress Sites Compromised by JavaScript Backdoors
March 6th, 2025
TheHackerNews
Over 1,000 WordPress Sites Infected with JavaScript Backdoors Enabling Persistent Attacker Access.
February 20th, 2025
The CTO Club
Crush Your New Gig in Cybersecurity From Day One: How to Navigate New-Hire Onboarding As a Security Engineer.
February 6th, 2025
Business.com
E-Commerce Website Security: 10 Best Practices to Protect Your Online Store.
February 2nd, 2025
DM News
WordPress Sites Hijacked to Spread Malware
February 2nd, 2025
ITPro Today
Expect a Client-Side Web Security Revolution
February 2nd, 2025
FinTech Futures
c/side Launches PCI Compliance Dashboard for New PCI DSS 4.0.1 Requirements
February 2nd, 2025
VMblog
c/side 2025 Predictions: Client-Side Script Security (Finally) Gets the Attention it Deserves
February 2nd, 2025
Tom's Guide
Thousands of WordPress Sites Hijacked - How to Stay Safe
February 2nd, 2025
Yahoo Finance
Hackers Are Hijacking WordPress Sites to Push Windows and Mac Malware
February 2nd, 2025
Corporate Compliance Insights
c/side Unveils Dashboard for New PCI Payment Security Rules
February 2nd, 2025
TechRound
Malware Found on Over 10,000 WordPress Sites
January 31st, 2025
MSN
Over 10,000 WordPress Sites Found Showing Fake Google Browser Update Pages to Spread Malware
January 31st, 2025
gbhackers
10,000 WordPress Websites Hacked to Distributing MacOS and Microsoft Malware
January 31st, 2025
Identity Management and Information Security News for the Week of January 31st
c/side, a cybersecurity company that specializes in browser-side third-party scripts, announced the launch of its PCI compliance dashboard to show that PCI DSS 4.0.1 requirements are met for third-party website script monitoring and management.
January 30th, 2025
Bundle
Hackers Are Hijacking WordPress Sites to Push Windows and Mac Malware
January 30th, 2025
TechJuice
Hackers Target WordPress Sites to Spread Malware on Windows and Mac
January 30th, 2025
Techzine
Outdated WordPress Versions and Plugins Abused for Large-Scale Malware Attack
January 30th, 2025
Cyber Security News
Hackers Use 10,000 WordPress Sites to Deliver Malware to MacOS and Microsoft Systems
January 30th, 2025
Finovate
FinTech Rundown: A Rapid Review of Weekly News
January 30th, 2025
MakeUseOf
A WordPress Hack Is Turning Reputable Websites Into Malware Hotspots
January 29th, 2025
Cybersecurity Dive
Over 10,000 WordPress Sites Found Showing Fake Google Browser Update Pages to Spread Malware
January 29th, 2025
Cybersecurity Dive
c/side's New PCI DSS Dashboard Covers Third-Party Web Script Security
January 29th, 2025
TechCrunch
Hackers Are Hijacking WordPress Sites to Push Windows and Mac Malware
January 29th, 2025
GlobeNewswire (wire release)
c/side Launches PCI Compliance Dashboard for New PCI DSS 4.0.1 Requirements
January 24th, 2025
Risky biz
ScriptAPI Hacks
January 24th, 2025
Cyber Kendra
10K WordPress Websites Deliver Cross-Platform Malware
January 24th, 2025
Cyber Security News
New JavaScript Attack Hijacking Government And University Websites
January 22nd, 2025
ITPro Today
Script Searched: How 2024’s Biggest Client-Side Attacks Left Millions of Websites Exposed
January 17th, 2025
The Hacker News
c/side revealed a widespread malware campaign that has targeted over 5,000 sites globally to create unauthorized administrator accounts, install a malicious plugin from a remote server, and siphon credential data back to it.
December 26th, 2024
SmarterMSP
Experts Look Back at 2024's Cybersecurity News
December 24th, 2024
Techopedia
Is PayPal’s Honey Misleading Users? We Investigate.
December 19th, 2024
APM Digest
2025 Observability Predictions.
December 18th, 2024
Solutions Review
6th Annual Insight Jam LIVE! Day 3 Recap: Cybersecurity Strategies.
December 17th, 2024
SafetyDetectives
Interview With Simon Wijckmans - Founder and CEO of c/side.
In the ever-evolving landscape of cybersecurity, client-side security has become a crucial battleground. Third-party scripts, often essential for modern web functionality, also present significant security risks. Simon Wijckmans, founder and CEO of c/side, recognized this growing threat through his experience at Microsoft, Cloudflare, and Vercel.
December 12th, 2024
Podcast: AI's Effect on Threat Detection and Response | Live Panel
The evolving threat landscape demands faster, more intelligent responses to cyber threats. Artificial intelligence (AI) is transforming how organizations detect, analyze, and respond to security incidents, enabling more proactive and efficient threat management. By leveraging machine learning, behavior analytics, and automated response systems, AI-driven solutions offer unparalleled capabilities for identifying potential vulnerabilities and mitigating risks in real-time.
December 12th, 2024
Solutions Review
AI's Effect on Threat Detection and Response.
December 11th, 2024
ITSP
Breaking Down the Complexities of Client-Side Threats and How to Stop Them | A c/side Brand Story Conversation with Simon Wijckmans.
December 10th, 2024
Podcast: Breaking Down the Complexities of Client-Side Threats and How to Stop Them | A c/side Brand Story
In a recent episode of Brand Story, Simon Wijckmans, founder and CEO of c/side, discussed the critical need to secure third-party scripts on websites, a frequently overlooked aspect of cybersecurity. Drawing on his experience with companies like Cloudflare and Vercel, Wijckmans outlined why traditional methods fall short in addressing dynamic threats and how c/side is redefining client-side security.
Listen here
December 10th, 2024
HIT Consultant
What All Healthcare IT Leaders Must Understand About the Kaiser Permanente Breach.
November 20th, 2024
HubSpot
Website Security Threats + 8 Services to Increase Your Site Security.
November 19th, 2024
SE Radio
Simon Wijckmans on Third-Party Browser Script Security.
November 15th, 2024
Podcast: Modern Cyber: Episode 37 Simon Wijckmans of c/side
In this episode of Modern Cyber, Jeremy Snyder speaks with Simon Wijckmans, CEO and founder of c/side, about the hidden complexities of client-side security in web environments. They discuss real-world examples like the Polyfill attack, emphasizing the risks in client-side scripting and vulnerabilities in traditional tools like secure web gateways. Simon explains how browser security, inline scripts, and DNS intricacies present ongoing security gaps, proposing a proactive approach to script monitoring and standardization to enhance web protection.
Listen here
November 14th, 2024
Dev Innovation Summit
Innovating Browser Security: New Dev Strategies for Taming Vulnerable Third-Party Scripts.
November 13th, 2024
Podcast: SE Radio 642: Simon Wijckmans on Third-Party Browser Script Security
Simon Wijckmans, founder of c/side – a company that focuses on monitoring, securing, and optimizing third-party JavaScript – joins SE Radio host Kanchan Shringi for a conversation about the security risks posed by third-party browser scripts. Through real-world examples and insights drawn from his work in web security, Simon highlights the dangers, including malicious attacks such as the recent Polyfill.io incident. He emphasizes the need for vigilant monitoring, as these third-party scripts remain essential for website functionalities like analytics, chatbots, and ads, despite their potential vulnerabilities. Simon explores the use of self-hosting solutions and content security policies (CSPs) to minimize risks, but he stresses that these measures alone are insufficient to fully safeguard websites.
November 1st, 2024
Cyber Defense Magazine
Strategy Must Adapt
October 24th, 2024
Return on Security
Security, Funding.
October 23rd, 2024
Daily AI Brief
Daily AI Brief: October 23
October 23rd, 2024
GlobeNewswire (wire release)
c/side Selected for TechCrunch Disrupt 2024 Startup Battlefield, Will Showcase AI-Driven Solution for Securing Vulnerable Third-Party Web Scripts.
October 15th, 2024
The Security Podast of Silicon Valley
Simon Wijckmans, Founder and CEO of cside.dev, Revolutionizing Client-Side Security.
October 3rd, 2024
Notorious PLG + AI
AI Growing Faster Than SaaS.
September 26th, 2024
Pulse 2.0
c/side: $6 Million (Seed) Secured To Fend Off Browser Supply Chain Attacks.
September 26th, 2024
TechNews
VC Rewind.
September 25th, 2024
CyberWire
Investments and Exits
September 24th, 2024
Startup Rise
c/side Raises $6 Million in Seed Funding.
September 24th, 2024
CIO First
c/side Raises $6M in Seed Funding to Thwart Costly Browser Supply Chain Attacks.
September 23rd, 2024
Dark Reading
c/side Lands $6M to Combat Rising Browser Supply Chain Attacks.
September 23rd, 2024
The SaaS News
c/side Secures $6 Million in Seed Funding.
September 20th, 2024
FinTech Global
USA Dominates Market as Weekly FinTech Funding Surges Past $800m.
September 20th, 2024
Solutions Review
Endpoint Security and Network Monitoring News for the Week.
September 19th, 2024
VMblog
c/side Raises $6M in Seed Funding to Thwart Costly Browser Supply Chain Attacks.
September 17th, 2024
Podcast: Simon Wijckmans, Founder and CEO of cside.dev, Revolutionizing Client-Side Security
In this episode of the Security Podcast of Silicon Valley, a YSecurity production, hosts Jon McLachlan and Sasha Sinkevich dive into an engaging conversation with Simon Wijckmans, Founder and CEO of cside.dev. Simon shares his journey from working at Hydra, Vercel, and Cloudflare to founding cside.dev, a security startup focused on client-side security. He discusses the evolution of web security, the unique challenges of client-side attacks, and how cside.dev is pioneering solutions to make web security more accessible. Simon's insights into the dynamic landscape of cybersecurity and his passion for innovative solutions make this episode a must-listen. Join us as we explore the future of web security with one of the industry's brightest minds.
September 17th, 2024
GPTE
c/side Secures $6M in Seed Round.
September 17th, 2024
San Francisco Business Times
Daily Digest: Funding Watch.
September 17th, 2024
StrictlyVC
StrictlyVC - Smaller Fundings.
September 17th, 2024
Security IT News
c/side Secures Funding to Protect Websites from Third-Party Web Script Risks.
September 17th, 2024
AI TechPark
c/side Raises $6M in Seed to Thwart Costly Browser Supply Chain Attacks.
September 17th, 2024
citybiz
c/side Raises $6M Seed Funding
September 17th, 2024
FinTech Global
c/side Secures $6m in Seed Funding to Combat Browser-Side Cyber Threats
September 17th, 2024
SecurityWeek
c/side Raises $6 Million to Secure the Browser Supply Chain.
September 16th, 2024
Morningstar
c/side Raises $6M in Seed Funding to Thwart Costly Browser Supply Chain Attacks.
September 16th, 2024
StartupHub
AI Startup c/side Raises $6M to Fortify Third Party Script Security.
September 16th, 2024
ChannelE2E
Channel Brief: Ricoh Layoffs, C/side Raises $6M for Supply Chain Security, AT&T Strike Ends.
September 16th, 2024
Fortune
c/side raises $6m in a seed funding round.
September 16th, 2024
Silicon Angle
c/side Raises $6M to Prevent Supply Chain Attacks by Securing Third-Party Scripts.
September 16th, 2024
FinSMEs
c/side Raises $6M in Seed Funding.
September 9th, 2024
TechRadar
Cisco's Merch Store Targeted by Dangerous Malware.
September 9th, 2024
The Register
Cisco Merch Shoppers Stung in Magecart Attack.
September 5th, 2024
TechCrunch
Startup Battlefield.
September 5th, 2024
Hotel Technology News
Spotlight Interview: Simon Wijckmans, Founder and CEO of c/side.
September 2nd, 2024
BetaNews
The Rise of Third-Party Browser Script Attacks.
August 29th, 2024
Podcast: When 3rd party JavaScript attacks
Simon Wijckmans from c/side joins Jerod & Nick to discuss the Pollyfill attack in detail. What does it mean for web developers & client-side security going forward?
August 22nd, 2024
Changelog
When 3rd-Party JavaScript Attacks.
August 21st, 2024
Dynamic Business
Cybersecurity Best Practices for SMEs.
August 13th, 2024
devmio
A JavaScript Expert’s Take on Polyfill Attacks and Security Best Practices.
August 13th, 2024
Stevie Awards
Gold: Cybersecurity Executive of the Year.
August 1st, 2024
Cyber Defense Magazine
Strategy Must Adapt
July 10th, 2024
Cybersecurity Excellence Awards
Cybersecurity Entrepreneur of the Year.
July 2nd, 2024
CyberSecurity360
Supply Chain Attack: The Polyfill[.]io Case and Its Implications.
July 1st, 2024
Intelligent CIO
As the Technology They Work with Advances, is It Time to Reassess the Role of the CIO?
June 28th, 2024
DevOps
Polyfill Becomes a Supply-Chain Risk to 100,000 Websites.
June 27th, 2024
HackRead
Polyfill Library Injected with Malware Impacting 100,000 Websites.
June 27th, 2024
PC Mag
Hulu, 100K+ Other Websites May Be Exposed to Polyfill Malware.
June 26th, 2024
Silicon Angle
Supply Chain Attack Compromises 100,000 Websites Via Polyfill Domain Takeover.
June 26th, 2024
CSO
Formerly Legitimate Polyfill Domain Abused to Serve Malicious Code.
June 26th, 2024
SecurityWeek
Polyfill Supply Chain Attack Hits Over 100K Websites.
June 26th, 2024
The Hacker News
Over 110,000 Websites Affected by Hijacked Polyfill Supply Chain Attack.
June 25th, 2024
The Register
If You're Using Polyfill Code on Your Site, Remove it Immediately.
June 24th, 2024
PC Mag
Domain That Redirected Hulu, 491K+ Other Websites to Porn Gets Shut Down.
June 24th, 2024
Bleeping Computer
Polyfill Claims It Has Been 'Defamed," Returns After Domain Shut Down.
June 24th, 2024
Dark Reading
Polyfill[.]io Supply Chain Attack Smacks Down 100K+ Websites.
June 14th, 2024
HackerNoon
Why Lessons from the British Airways Data Breach Are Timelier Than Ever.
June 11th, 2024
Pulse 2.0
c/side: How This Cybersecurity Company Optimizes Vulnerable Browser-Side Third-Party Scripts.
June 3rd, 2024
Intelligent CIO
Editor’s Question: As the Technology They Work with Advances – Is it Time to Re-Assess the Role of the CIO?
May 27th, 2024
Pulse 2.0
c/side: $1.7 Million Raised To Secure Browsers Against Zero-Day Attacks.
May 21st, 2024
SC Media
Startup c/side Aims to Secure 3rd-Party Web Browser Scripts.
May 20th, 2024
Tech Funding News
AI-Powered Security Startup c/side Raises $1.7M to Fight Browser Zero-Day Attacks.
May 20th, 2024
Tech Funding News
AI-Powered Security Startup c/side Raises $1.7M to Fight Browser Zero-Day Attacks.
May 20th, 2024
Tech Funding News
AI-Powered Security Startup c/side Raises $1.7M to Fight Browser Zero-Day Attacks.
May 17th, 2024
Solutions Review
Endpoint Security and Network Monitoring News of the Week.
May 16th, 2024
CIO Influence
c/side Launches to Protect the Browser Supply Chain from Zero-Day Attacks
May 16th, 2024
Axios
c/side, an SF cybersecurity startup focused on the web browser supply chain, raised $1.7m led by Scribble Ventures.
May 16th, 2024
FinSMEs
c/side Raises $1.7 in Funding
May 16th, 2024
StrictlyVC
StrictlyVC - Smaller Fundings
May 16th, 2024
VMblog
c/side Launches with an Answer to Vulnerable Browser Supply Chains.
May 16th, 2024
Yahoo Finance
c/side Emerges from Stealth with $1.7 Million in Funding to Set New Web Security Benchmarks.
May 16th, 2024
Security IT News
Browser Supply Chain Secured with c/side AI-Fueled Security Solution.
May 16th, 2024
San Francisco Business Times
Daily Digest: San Francisco Seedlings.
May 16th, 2024
Cybersecurity Dive
c/side Launches to Prevent Zero-Day Attacks in the Browser Supply Chain
May 16th, 2024
FinTech Global
Cybersecurity Firm c/side Raises $1.7m to Enhance Browser Security
May 16th, 2024
GlobeNewswire
c/side Emerges from Stealth with $1.7 Million in Funding to Set New Web Security Benchmarks
May 15th, 2024
Morningstar
c/side Emerges from Stealth with $1.7 Million in Funding to Set New Web Security Benchmarks.
May 7th, 2024
SecurityWeek
c/side Emerges From Stealth Mode With $1.7 Million Investment.
January 8th, 2024
Computerworld
Website Certificates That Expire Every Six Weeks? What IT Should Know.
January 2nd, 2024
SmarterMSP
Experts Look Ahead: Cybersecurity in 2025.