코인 매입
시장
현물
선물
재테크
이벤트
더 알아보기
reward-center초보자 존
홈 피드빠른 소식 정보
Injective npm Package Subject to Malicious Modification, Hacker Attempts to Steal Wallet Private Key and Mnemonic
  • INJ0%

BlockBeats News, July 10th, according to Socket monitoring, the Injective blockchain npm package @injectivelabs/sdk-ts was maliciously modified. The attacker compromised a developer's GitHub account to inject malicious code designed to steal wallet private keys and mnemonic phrases. The stolen data was then encoded and sent to an address disguised as a legitimate Injective network server.

The package had around 50,000 weekly downloads. The malicious version 1.20.21 showed suspicious commits starting on June 8th and was locked in 17 other packages within the Injective Labs npm scope. Users who did not directly install this SDK may also be affected.

출처:BlockBeats

면책 조항: 현재 콘텐츠는 제3자 관점에서 제공되거나 제3자 관점에서 AI가 직접 번역한 것입니다. CoinEx는 콘텐츠의 진위성, 정확성, 독창성을 보장하지 않으며 CoinEx의 투자 조언으로 간주하지 않습니다. 암호화폐 가격은 변동성이 크므로 잠재적인 위험에 유의하시기 바랍니다.

인기 검색
  • 코인
    가격
    24시간 변동