- Buy Crypto
- Markets
- Futures
- Spot
- Copy Trade
WE-Launch
Ledger CTO: Large-Scale Supply Chain Attack Underway, Entire JavaScript Ecosystem at Risk
BlockBeats News, September 9, Ledger's Chief Technology Officer Charles Guillemet wrote that, "A large-scale supply chain attack is currently taking place: a well-known developer's NPM account has been compromised. The affected package has been downloaded over 1 billion times, which means the entire JavaScript ecosystem could be at risk.
The malicious code works by silently tampering with cryptocurrency addresses in the background to steal funds.
If you use a hardware wallet, please carefully verify each signature transaction, and you are safe.
If you do not use a hardware wallet, please refrain from making any on-chain transactions for now.
It is currently unclear whether the attacker has already stolen the software wallet's mnemonic phrase.
For more details, see the report. If you are using Ledger or another hardware wallet that supports clear signatures, you will not be affected. My previous tweets were a reminder: Users who do not use hardware wallets that support clear signatures are at risk. Please be sure to carefully review each transaction before signing."
You may also like
Gainers
Latest Crypto News
As the U.S. Struggles to Mediate, Russia and Ukraine Launch Attacks on Each Other
A certain "Flash Loan Attack Whale" address has accumulated 7066 ETH in the past 5 days through a "Rug Pull Contract Buy Spot" strategy.
The People's Bank of China Convenes Meeting of the Coordination Mechanism for Cracking Down on Virtual Currency Transaction Speculation
「1011 Insider Whale」 Opens New 5x ETH Short Position, Reaching $15 Million in Position Size
Today, the Hyperliquid team's address released 2.6 million HYPE from staking.
Customer Support:@weikecs
Business Cooperation:@weikecs
Quant Trading & MM:[email protected]
VIP Services:[email protected]
App