Compromised Injective SDK sends wallet keys through fake telemetry
A malicious update to an Injective developer package has exposed private keys and seed phrases after being downloaded more than 300 times, Socket has found. According to security...
Read the full articleYou might also wanna read

Compromised Injective SDK sends wallet keys through fake telemetry
A malicious update to an Injective developer package has exposed private keys and seed phrases after being downloaded more than 300 times, S
Compromised @injectivelabs/sdk-ts exfiltrates wallet keys through fake ...
A malicious release of @injectivelabs/sdk-ts hid a wallet-key stealer inside code labeled as usage telemetry, then spread it across 17 more
Malicious Injective SDK Package Targets Private Keys and Seed Phrases
A malicious version of a software tool used by Injective developers was designed to collect wallet private keys and recovery phrases, raisin
Compromised Injective SDK npm Package Exfiltrates Wallet Keys and Mnemonics
A compromised version (1.20.21) of the Injective Labs TypeScript SDK npm package was published containing malicious code that exfiltrates cr
Injective SDK compromised on npm, crypto wallet stealer deployed
Attackers injected malicious code into the Injective Labs SDK on npm to steal cryptocurrency wallet private keys and seed phrases.
Injective SDK on npm infected with cryptocurrency wallet stealer
Hackers compromised the Injective Labs SDK project's GitHub repository and used it to publish a malicious package on the Node Package Manage

Comments
Sign in to join the conversation.
No comments yet. Be the first.