This article was prepared using automated systems that process publicly available information. It may contain inaccuracies or omissions and is provided for informational purposes only. Nothing herein constitutes financial, investment, legal, or tax advice.
Hackers compromised popular JavaScript libraries through an NPM account breach, injecting malware designed to target cryptocurrency wallets. The attack impacted widely-used packages with over 1 billion downloads, putting numerous crypto projects at risk. Security researchers report only $50 in crypto stolen so far, but warn the incident may still be unfolding.
- Attack compromised widely-used JavaScript libraries with over 1 billion downloads, affecting projects through dependency chains
- Specifically targeted Ethereum and Solana wallets, stealing memecoins including BRETT, ANDY, DORK, VISTA, and GONDOLA
- Stolen amount rapidly increased from $0.05 to $50 within hours, indicating potentially ongoing malicious activity
📎 Related coverage from: cointelegraph.com