- Acheter crypto
- Marchés
- Futures
- Spot
- Copy trading
WE-Launch
Security Advisory: Another well-known developer's NPM account has been compromised, injecting wallet-stealing malware
BlockBeats News, September 9th. According to Socket monitoring, the ongoing NPM supply chain attack has spread from the well-known developer Qix to another highly prominent maintainer. The NPM account duckdb_admin, responsible for the DuckDB-related package, has been compromised, and multiple malicious versions have been published. The injected code is the same wallet-stealing malware used when Qix's account was compromised, strongly indicating that both are part of the same attack campaign.
Previously reported, Ledger's CTO stated that in the event of a large-scale supply chain attack, the entire JavaScript ecosystem could be at risk. However, the NPM attackers were not successful, and there were almost no victims.
Vous pourriez aussi aimer
À la hausse
Dernières actus crypto
Arthur Hayes: La liquidité du marché s'améliore légèrement, mais la BTC reste confrontée à la possibilité de tester à nouveau 80 000 $
Deutsche Bank 2026 Outlook: L’objectif de fin d’exercice du S&P 500 devrait être de 8000 points
Un homme à San Francisco, aux États-Unis, s'est introduit dans une maison et a volé environ 11 millions de dollars en cryptomonnaie.
La Caisse de retraite du New Jersey augmente sa participation dans MicroStrategy à 16 millions de dollars
Une baleine a acheté les fonds restants dans HYPE spot, avec la taille actuelle de la position à environ 15,5 millions de dollars.
Assistance client:@weikecs
Collaborations commerciales:@weikecs
Trading quantitatif/Market makers:[email protected]
Programme VIP:[email protected]
App