- Acheter crypto
- Marchés
- Futures
- Spot
- Copy trading
WE-Launch
Security Advisory: Another well-known developer's NPM account has been compromised, injecting wallet-stealing malware
BlockBeats News, September 9th. According to Socket monitoring, the ongoing NPM supply chain attack has spread from the well-known developer Qix to another highly prominent maintainer. The NPM account duckdb_admin, responsible for the DuckDB-related package, has been compromised, and multiple malicious versions have been published. The injected code is the same wallet-stealing malware used when Qix's account was compromised, strongly indicating that both are part of the same attack campaign.
Previously reported, Ledger's CTO stated that in the event of a large-scale supply chain attack, the entire JavaScript ecosystem could be at risk. However, the NPM attackers were not successful, and there were almost no victims.
Vous pourriez aussi aimer
À la hausse
Dernières actus crypto
Quatre hommes entrent par effraction, volent pour 1,6 million de dollars de cryptomonnaie, victimes de torture pendant plus de 13 heures
Ethereum Surges Above $2900
Le rapport PCE de septembre aux États-Unis sera reporté et publié le 5 décembre à 22 heures.
Le ETF XRP Spot XRPZ de Franklin, un produit financier appartenant à Franklin, a été lancé aujourd'hui.
Analyse : L'investissement de 50 milliards de dollars dans les infrastructures d'IA d'Amazon renforce le sentiment du marché des cryptomonnaies
Assistance client:@weikecs
Collaborations commerciales:@weikecs
Trading quantitatif/Market makers:[email protected]
Programme VIP:[email protected]
App