Data: The attacker of the NPM developer account has reportedly only profited about $20 so far
ChainCatcher news, according to CertiK Alert monitoring, developer Qix's NPM account was compromised by a phishing attack, and the attacker injected malicious code into npm. According to Security Alliance, the attacker appears to have profited only about $0.05 worth of ETH and $20 worth of Meme coins.
Previous reports stated that Ledger CTO Charles Guillemet posted that "a large-scale supply chain attack is currently underway: the NPM account of a well-known developer has been compromised. The affected packages have been downloaded more than 1 billion times, which means the entire JavaScript ecosystem could be at risk. The malicious code works by silently tampering with cryptocurrency addresses in the background to steal funds."
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
Barcelona Football Club criticized for signing a $22 million sponsorship deal with crypto company ZKP
Swedish payment giant Klarna's first stablecoin, KlarnaUSD, has been launched ahead of schedule
Bitcoin OG opens 5x ETH short position worth $15.04 million
Current mainstream CEX and DEX funding rates indicate the market remains broadly bearish
Trending news
MoreCrypto prices
More
