Solana blockchain’s popular web3.js npm package backdoored to steal keys, funds
December 5, 2024 at 06:16PM Compromised versions of the @solana/web3.js JavaScript library were distributed via npm, allowing attackers to insert malicious code and steal private keys. The breach affected users during a specific timeframe, resulting in an estimated loss of $130K. Two affected versions have since been unpublished, and investigations are ongoing. ### Meeting Takeaways … Read more