⚠️ Large-scale poisoning in the NPM ecosystem: Your wallet may be targeted! Note: A serious supply chain attack has occurred in NPM — Attackers infiltrated the accounts of maintainers of several well-known packages (such as chalk, debug, etc.) on the world's largest JS package management platform, NPM, through phishing methods, and then injected malicious code into these packages. Since these packages are among the most commonly used tools in the entire JavaScript ecosystem, with over 2 billion downloads per week, the impact is significant. This is one of the largest supply chain attacks in the history of the NPM ecosystem, where hackers used maintainer accounts to inject malicious code into commonly used packages, specifically targeting Web3/crypto wallet users, silently stealing funds through browser hijacking. This means that the projects, software wallets, browser plugins, etc., you interact with may be at risk due to the use of this version of the malicious library. 1️⃣...
Show original
79.55K
37
The content on this page is provided by third parties. Unless otherwise stated, OKX TR is not the author of the cited article(s) and does not claim any copyright in the materials. The content is provided for informational purposes only and does not represent the views of OKX TR. It is not intended to be an endorsement of any kind and should not be considered investment advice or a solicitation to buy or sell digital assets. To the extent generative AI is utilized to provide summaries or other information, such AI generated content may be inaccurate or inconsistent. Please read the linked article for more details and information. OKX TR is not responsible for content hosted on third party sites. Digital asset holdings, including stablecoins and NFTs, involve a high degree of risk and can fluctuate greatly. You should carefully consider whether trading or holding digital assets is suitable for you in light of your financial condition.