Crypto Security Report: May 2022
Endo's import.meta and __dirname implementations for MetaMask's module compatibility, a distributed key generation prototype snap using multi-party computation for MetaMask Flask, and the launch of…
Read the full articleYou might also wanna read
MetaMask Integrates Automated Security Feature to Detect Address Poisoning Attacks
The popular self-custody wallet MetaMask has officially integrated a new security mechanism designed to protect users against address poison

Injective Labs and Injective Protocol: Injective Labs’ npm SDK Poisoned to Steal Crypto Wallet Credentials
Injective Labs npm SDK Compromised in Supply Chain Attack Targeting Crypto Wallets Attackers breached Injective Labs’ official source code r
Injective SDK on npm infected with cryptocurrency wallet stealer
Hackers compromised the Injective Labs SDK project's GitHub repository and used it to publish a malicious package on the Node Package Manage

Automated Package-Publication Incident IndonesianFoods in the NPM Ecosystem Linked to Crypto Reward-Farming Scam
In November 2025, a large-scale surge of package publications on the NPM registry with similar structures and naming patterns was discovered
Compromised Injective SDK npm Package Exfiltrates Wallet Keys and Mnemonics
A compromised version (1.20.21) of the Injective Labs TypeScript SDK npm package was published containing malicious code that exfiltrates cr

Comments
Sign in to join the conversation.
No comments yet. Be the first.