Hackers Target JavaScript Ecosystem to Hijack Crypto Wallets
Malefactors breached a popular developer on the NPM platform, embedding malicious code into JavaScript packages to drain cryptocurrency wallets. This was reported by Ledger’s CTO, Charles Guillemet.
🚨 There’s a large-scale supply chain attack in progress: the NPM account of a reputable developer has been compromised. The affected packages have already been downloaded over 1 billion times, meaning the entire JavaScript ecosystem may be at risk.
The malicious payload works…
— Charles Guillemet (@P3b7_)
