Hackers have compromised widely used JavaScript software libraries in the so -called supply chain attack in history. The injected malware has been reported to be designed to steal crypto by replacing purse addresses and blocking transactions.
According to several reports on Monday, hackers broke the node package manager (NPM) account of a well -known developer and secret added Malware in JavaScript’s popular libraries used by millions of apps.
Malm codes are changing or hijacks of crypto wallet addresses, putting the risk of projects with the value of projects.
“There is a large-scale chain chain attack on development: The NPM’s account of a reputable developer is compromised,” led ledger leader Charles Guillemet warned on Monday. “The affected packages have been downloading more than 1 billion times, which means the entire JavaScript ecosystem may be at risk.”
The targeted violation packages such as Chalk, Strip-even and Color converted – Small utilities are buried deeply in the dependency trees of countless projects. Together, these libraries have been downloaded more than a billion times per week, which means even developers who have never been installed directly can be exposed.
The NPM is like an app store for developers – a central library where they share and download small code packages to produce JavaScript projects.
Attacks appear to be planted by a crypto-clipper, a type of malware that quietly replaces purse addresses during transactions to move funds. Security researchers have warned that users who rely on software wallets may be particularly vulnerable, while proof of each transaction in a hardware wallet is protected.
It remains unclear if the malware is also trying to steal the seed phrases directly.
This is a story development, and further information will be added as it is available.
Magazine: Within 30,000 phone bot farm that steals crypto airdrops from real users
