Ledger, a hardware wallet company, warns users not to use dApps due to a supply chain attack that compromised their library and stole $600,000 in cryptocurrency and NFTs. The attack was due to a phishing attack on a former employee's NPMJS account. Ledger has released a clean version of the library and advises users to be cautious of ongoing phishing attempts. The compromised library affected versions 1.1.5-1.1.7 and attempts to steal cryptocurrency from users of Coinbase, Trust Wallet, and MetaMask. The investigation is ongoing and approximately $680,000 was stolen. Tether has frozen the stolen USDT and Ledger promises to release more information soon.
Share this post
Behind the Shadows: How a Supply Chain Attack…
Share this post
Ledger, a hardware wallet company, warns users not to use dApps due to a supply chain attack that compromised their library and stole $600,000 in cryptocurrency and NFTs. The attack was due to a phishing attack on a former employee's NPMJS account. Ledger has released a clean version of the library and advises users to be cautious of ongoing phishing attempts. The compromised library affected versions 1.1.5-1.1.7 and attempts to steal cryptocurrency from users of Coinbase, Trust Wallet, and MetaMask. The investigation is ongoing and approximately $680,000 was stolen. Tether has frozen the stolen USDT and Ledger promises to release more information soon.