Crypto transactions at risk as large attack hits industry – DL News
- Experts say a prominent developer was phished.
- The attack requires user interaction to succeed.
- Still, cybersecurity experts advise against making any transactions.
Hackers have poisoned popular JavaScript packages with crypto-stealing malware, potentially threatening millions of developers and users worldwide.
The large-scale attack targeted a prominent developer’s account after tricking them with fake emails — a technique known as phishing — to then inject malicious code into packages that get downloaded over one billion times per week.
The malware silently replaces wallet addresses when users try to send funds, instead redirecting the money to wallets controlled by the attackers.
Security experts discovered the attack when routine…
