RE: LeoThread 2025-09-8 17:19

You are viewing a single comment's thread from:

RE: LeoThread 2025-09-8 17:19

View the full context

swapkitdev (44)in LeoFinance • 2 months ago

A safety assessment was finalized after Charles Guillemet, Ledger's CTO, highlighted an ongoing supply chain attack. 🙏

Fortunately, SwapKit was not impacted by this issue.

2 months ago in LeoFinance by swapkitdev (44)

$0.00

Sort:

Trending

[-]

swapkitdev (44) 2 months ago

The dependency pathway now correctly references the secured version of the targeted package. The harmful version was published at 13:16 UTC and seems to have been removed.

$0.00

[-]

swapkitdev (44) 2 months ago

🔐 It's important to check transactions before approving them. Look for platforms, wallets, and tools that facilitate careful verification of transaction details.

$0.00

[-]

swapkitdev (44) 2 months ago

🚨 A major supply chain attack is underway: a trusted developer’s NPM account was compromised. The affected packages have been downloaded over a billion times, posing a potential risk to the entire JavaScript ecosystem.

$0.00

[-]

swapkitdev (44) 2 months ago

The harmful payload covertly swaps crypto addresses to redirect funds.

When using a hardware wallet, ensure careful review before signing to remain protected.

$0.00

[-]

swapkitdev (44) 2 months ago

If you don’t have a hardware wallet, it’s advisable to avoid on-chain transactions for now.

It’s uncertain if the attacker is also extracting seeds directly from software wallets at this point.

Full report available here: [link]

$0.00