8 hours ago
Crypto users urged to take extreme care as NPM attack hits core JavaScript libraries
The breach hit core JavaScript libraries such as chalk and strip-ansi, downloaded billions of times each week, raising alarms over the security of open-source software.
Hackers have compromised widely used JavaScript software libraries in what’s being called the largest supply chain attack in history. The injected malware is reportedly designed to steal crypto by swapping wallet addresses and intercepting transactions.
According to several reports on Monday, hackers broke into the node package manager (NPM) account of a well-known developer and secretly added malware to popular JavaScript libraries used by millions of apps.
The malicious code swaps or hijacks crypto wallet addresses, potentially putting many projects at risk.
Source: Cointelegraph →Related News
- 56 minutes ago
Lion Group doubles down on Hyperliquid as HYPE breaks a new high
- 1 hour ago
Putin adviser claims US using stablecoins, gold to devalue its $37T debt
- 3 hours ago
US SEC crypto task force to tackle financial surveillance and privacy
- 4 hours ago
Largest NPM attack in crypto history stole less than $50: SEAL
- 4 hours ago
Ethereum L2 MegaETH introduces yield-bearing stablecoin to fund protocol