Injective npm Package Attack Exposes Risk to Wallet Private Keys
2d ago•
bullish:
0
bearish:
0
Share
Attackers backdoored the official Injective TypeScript SDK on npm, inserting code into 18 packages that captured wallet private keys and seed phrases during normal key-derivation flows before clean replacements were published roughly 49 minutes later.
2d ago•
bullish:
0
bearish:
0
Share
Securely connect the portfolio you’re using to start.


