December 6, 2024 at 10:45AM Cybercriminals have launched a campaign named “Meeten,” targeting Web3 professionals via fake video meetings that install crypto-stealing malware on Windows and Macs. The scheme uses sophisticated social engineering tactics to prompt users to download malicious software, compromising sensitive data, including cryptocurrency wallets and personal banking information. ### Meeting Takeaways on … Read more
December 4, 2024 at 12:33PM The Solana JavaScript SDK was compromised in a supply chain attack, enabling the theft of cryptocurrency private keys through malicious code in versions 1.95.6 and 1.95.7 of the library. Developers are urged to update to version 1.95.8 and rotate keys to safeguard their assets. Stolen assets are valued at approximately … Read more
December 4, 2024 at 06:33AM This week, developers unknowingly downloaded compromised versions of the Solana Web3.js library, allowing attackers to steal private keys and drain funds. The malicious versions were available for five hours. Users are advised to update to the clean version and reset all credentials, as their systems may be compromised. ### Meeting … Read more
December 4, 2024 at 05:06AM Cybersecurity researchers have identified a software supply chain attack targeting the @solana/web3.js npm library, with malicious versions 1.95.6 and 1.95.7 designed to steal users’ private keys and drain cryptocurrency wallets. Affected users are advised to update their versions and potentially rotate their authority keys. ### Meeting Takeaways – December 4, … Read more
October 31, 2024 at 04:10PM LottieFiles’ Lotti-Player project was compromised in a supply chain attack, injecting a crypto drainer into websites, potentially costing one victim $723,000 in Bitcoin. Affected versions were quickly replaced with a secure update. Users are advised to upgrade or be cautious of fraudulent wallet connection requests amid ongoing investigations into the … Read more