Data: The attacker of the NPM developer account has reportedly only profited about $20 so far
ChainCatcher news, according to CertiK Alert monitoring, developer Qix's NPM account was compromised by a phishing attack, and the attacker injected malicious code into npm. According to Security Alliance, the attacker appears to have profited only about $0.05 worth of ETH and $20 worth of Meme coins.
Previous reports stated that Ledger CTO Charles Guillemet posted that "a large-scale supply chain attack is currently underway: the NPM account of a well-known developer has been compromised. The affected packages have been downloaded more than 1 billion times, which means the entire JavaScript ecosystem could be at risk. The malicious code works by silently tampering with cryptocurrency addresses in the background to steal funds."
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
The Federal Reserve may be disappointed by expectations of a rate cut in 2026
All three major U.S. stock indexes open higher; AI company Nebius surges over 50%
Fortune: Trump's personal net worth has increased by $3 billion over the past year
New York gold futures surpass $3,700 for the first time
Trending news
MoreCrypto prices
More
