Express

Security Agency: NPM Supply Chain Attacked, Developer qix Falls Victim

Summary: According to market reports, renowned developer qix fell victim to a phishing attack, resulting in malicious code being injected into npm software packages, including chalk, strip-ansi, color-convert, and others. The attack involved hooking wallet functions, altering ETH/SOL transaction receiving addresses, and replacing addresses in network responses. Users are advised to verify recipients and amounts on ...

According to market reports, renowned developer qix fell victim to a phishing attack, resulting in malicious code being injected into npm software packages, including chalk, strip-ansi, color-convert, and others.

The attack involved hooking wallet functions, altering ETH/SOL transaction receiving addresses, and replacing addresses in network responses. Users are advised to verify recipients and amounts on wallet interfaces, check for address changes after pasting, review recent transactions, and prioritize using hardware wallets for high-value operations.

Last Update:

Tags:
Link: Security Agency: NPM Supply Chain Attacked, Developer qix Falls Victim [Copy]

Last: US SEC Cryptocurrency Working Group to Hold Financial Regulation and Privacy Roundtable Meeting on October 17

Next: White House responds to Epstein's birthday card: Not drawn by Trump

The Crypto Treasury Boom Meets Regulatory Chill: Is the DAT Frenzy Fading? 5 days ago

Nasdaq Takes Aim at 'Crypto-Flipping' Companies with Stricter Rules 9 days ago

BTC Weekly Outlook: The Oversold Bounce—A Bottom or a Shorting Opportunity? 12 days ago

The Making of a Political Darling: Is Chainlink’s Government Deal a Victory for Tech or... 16 days ago

Google Steps Into Blockchain: A New Front in the “Ledger Wars” 18 days ago