Diamond Member ThaHaka 0 Posted Friday at 05:29 PM Diamond Member Share Posted Friday at 05:29 PM This is the hidden content, please Sign In or Sign Up Unknown threat actors compromised the Injective Labs SDK project's GitHub repository and leveraged it to publish a malicious package on the npm registry to steal cryptocurrency wallet private keys and mnemonic seed phrases. The compromised version, @injectivelabs/sdk-ts@1.20.21, came embedded with fake telemetry functionality that exfiltrated data from cryptocurrency wallets. The version was This is the hidden content, please Sign In or Sign Up 0 Quote Link to comment https://hopzone.eu/forums/topic/321141-h4ckn3wsinjective-labs-github-compromise-pushes-wallet-key-stealing-npm-packages/ Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.