by: xpoolPosted on:

Crypto Security Threat: NPM Attack Injects Malware into Popular JavaScript Libraries

A major cybersecurity threat has emerged for developers and crypto users as hackers have compromised the popular npm package manager, injecting malware into widely used JavaScript libraries. Millions of apps utilize these libraries, which have now been infiltrated with malicious code designed to steal cryptocurrency. Reports indicate that hackers exploited a developer account, secretly injecting malware into essential packages such as chalk, strip-ansi, and color-convert, downloaded by billions of users weekly. The injected malware silently alters wallet addresses during transactions, potentially jeopardizing billions of downloads across numerous projects.

Related posts:

  1. Ledger CTO Warns Users to Avoid On-Chain Transactions Following JavaScript Breach
  2. Ledger CTO Warns of JavaScript Supply Chain Risk to Crypto Users
  3. JavaScript Compromise: Hacker Weaponizes Code to Steal Crypto Funds
  4. Ledger CTO Warns of Massive NPM Hack Affecting Millions