Data: The attacker of the NPM developer account has reportedly only profited about $20 so far
ChainCatcher news, according to CertiK Alert monitoring, developer Qix's NPM account was compromised by a phishing attack, and the attacker injected malicious code into npm. According to Security Alliance, the attacker appears to have profited only about $0.05 worth of ETH and $20 worth of Meme coins.
Previous reports stated that Ledger CTO Charles Guillemet posted that "a large-scale supply chain attack is currently underway: the NPM account of a well-known developer has been compromised. The affected packages have been downloaded more than 1 billion times, which means the entire JavaScript ecosystem could be at risk. The malicious code works by silently tampering with cryptocurrency addresses in the background to steal funds."
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
USD/JPY drops nearly 50 points in the short term, now rebounds to 147.03
Trending news
MoreCrypto prices
More
