ChainCatcher message, Ledger Chief Technology Officer Charles Guillemet stated that a large-scale supply chain attack is currently occurring: a well-known developer's NPM account has been compromised. The affected package has been downloaded over 1 billion times, which means the entire JavaScript ecosystem could be at risk. The malicious code works by silently modifying cryptocurrency addresses in the background to steal funds. If you are using a hardware wallet, please carefully verify each signed transaction, you are safe. If you are not using a hardware wallet, please temporarily avoid any on-chain transactions. It is currently unclear whether the attacker has directly stolen the mnemonic phrases of software wallets.
Detailed report. If you are using Ledger or other hardware wallets that support clear signatures, you will not be affected. My previous tweet was a reminder: users who do not use hardware wallets that support clear signatures are at risk. Please be sure to carefully check each transaction before signing.
.
