In what’s being termed the largest supply chain attack in history, hackers have compromised widely used JavaScript libraries, including chalk and strip-ansi, which collectively are downloaded over a billion times weekly. The attackers injected malware designed to steal cryptocurrency by swapping wallet addresses and intercepting transactions. They accessed the node package manager (NPM) account of a prominent developer, leading to the malware being hidden in popular software libraries. This compromises not only direct users but also those utilizing apps that incorporate these libraries. The malware, identified as a crypto-clipper, alters wallet addresses during transactions, risking potential financial losses for users relying on software wallets. Security experts have raised alarms, stressing the heightened vulnerability for those not using hardware wallets, which provide an additional layer of protection. It remains uncertain if this malware seeks to capture seed phrases directly. As investigations continue, users are urged to exercise extreme caution with their crypto transactions.

Source 🔗