menu
techminis

A naukri.com initiative

google-web-stories
source image

Hackingblogs

3w

read

432

img
dot

Image Credit: Hackingblogs

Malicious Update to @solana/web3.js npm Library Steals Private Keys, Puts Crypto Wallets at Risk

  • The well-known @solana/web3.js library has been compromised in a supply chain attack.
  • Two malicious versions of the library were posted on the official npm registry on December 2, 2024.
  • The malicious code stole private keys from developers and users, putting cryptocurrency wallets at risk.
  • Developers are advised to rotate their private keys and update to Solana Web3.js version 1.95.8 immediately.

Read Full Article

like

26 Likes

For uninterrupted reading, download the app