🚨🕵️🚨#NOW🚨🕵️🚨
Ledger exploit drained $484,000 and put DeFi in check; a former employee linked to malicious code
The CEO of security company Blockaid told CoinDesk that users remain at risk.
Hackers stole $484,000 on Thursday after inserting malicious code into the Github library for Connect Kit, a widely used blockchain software maintained by crypto wallet company Ledger. Several major decentralized finance (DeFi) protocols using the library have been affected and users have been warned to avoid using decentralized applications (dApps) entirely until these protocols are updated.
Ledger's Connect Kit is a snippet of code that allows DeFi protocols to connect to crypto hardware wallets. The exploit potentially affects the interface of all protocols that use Connect Kit, which includes companies like Sushi, Lido, Metamask, and Coinbase.
In an X post on Thursday addressing the incident, Ledger confirmed that an employee had been the target of a "phishing attack," after which the attacker "posted a malicious version of the Ledger Connect Kit."
A Ledger spokesperson told CoinDesk that it had “identified and removed a malicious version of the Ledger Connect Kit,” and the company said in its X post that “the window where funds were drained was limited to a period of less than two hours.” ".