Ledger CTO: os atacantes da NPM falharam, quase sem vítimas
Fonte: BlockBeats
Hora: 2025-09-09 18:02:09
BlockBeats News, on September 9, Ledger Chief Technology Officer Charles Guillemet issued an update saying, "The latest progress of NPM attacks: Fortunately, the attack failed and there were almost no victims. The attack began with a phishing email disguised as a npm support domain name, stealing user credentials, allowing the attacker to publish malware package updates. The injected code targets network encryption activities, hacks into chains such as O Ethereum e o Solana, seqüestram transações e substituem os endereços da rede. Os ataques aparecem em carteiras de hardware para se defender contra as ameaças. Os downloads de pacotes afetados excederam 1 bilhão de vezes, o que significa que todo o ecossistema JavaScript pode estar em risco.