Data: The attacker of the NPM developer account has reportedly only profited about $20 so far
ChainCatcher news, according to CertiK Alert monitoring, developer Qix's NPM account was compromised by a phishing attack, and the attacker injected malicious code into npm. According to Security Alliance, the attacker appears to have profited only about $0.05 worth of ETH and $20 worth of Meme coins.
Previous reports stated that Ledger CTO Charles Guillemet posted that "a large-scale supply chain attack is currently underway: the NPM account of a well-known developer has been compromised. The affected packages have been downloaded more than 1 billion times, which means the entire JavaScript ecosystem could be at risk. The malicious code works by silently tampering with cryptocurrency addresses in the background to steal funds."
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
ECB Governing Council Member: ECB Interest Rate Cycle Nears Its End
Data: The current Crypto Fear & Greed Index is 54, indicating a neutral state.
pump.fun's market share among Solana-based token launch platforms rises to 84.1%
