• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M
Threat of Supply Chain Attack in Crypto: Warning from Ledger CTO

Threat of Supply Chain Attack in Crypto: Warning from Ledger CTO

user avatar

by Giorgi Kostiuk

2 days ago

Ledger's CTO Charles Guillemet has warned of a serious threat in the crypto industry related to a supply chain attack that could affect millions of users.

Danger of Attacks via NPM Packages

According to Guillemet, attackers have compromised widely used NPM (Node Package Manager) packages, some of which have over 1 billion downloads. These packages are now being weaponized to steal cryptocurrency from users and developers.

Risks for Developers and Users

NPM packages are essential building blocks for many crypto applications. The compromise of even a single package can impact every project that depends on it. Malicious code is often hidden deep within updates or dependencies, making it hard to detect. For end users, this could mean that simply using a web wallet or interacting with a dApp could expose their funds to theft.

Recommendations from Charles Guillemet

Guillemet urges the crypto community to take the threat seriously. He recommends strict code auditing, securing development pipelines, and using hardware wallets to minimize exposure. For users, sticking with trusted software and avoiding browser wallets is crucial.

The growing frequency of software supply chain compromises proves that even the best cryptography can’t protect users if the software handling it has been tampered with.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

Other news

BlackRock Announces Plans for Tokenized Funds in Investment Products

chest

BlackRock is set to create a tokenized funds platform, merging traditional assets with blockchain technology.

user avatarGiorgi Kostiuk

Méliuz Strengthens Bitcoin Reserves with New Strategy

chest

Fintech company Méliuz has started utilizing derivatives to increase its Bitcoin reserves while ensuring financial stability.

user avatarGiorgi Kostiuk

Top Derivatives Trading Platforms in Europe: An Expert Analysis

chest

An expert analysis of leading derivatives trading platforms in Europe, highlighting their strengths and weaknesses.

user avatarGiorgi Kostiuk

Significant Partnership Between Ripple and BBVA: Impact on the Financial Sector

chest

Ripple announces a partnership with BBVA, one of Europe's largest banks, potentially changing the approach to cryptocurrencies in the global financial system.

user avatarGiorgi Kostiuk

Arthur Hayes Accumulates $1M in sENA Tokens Before Critical USDH Vote

chest

Arthur Hayes has accumulated nearly $1 million in sENA tokens ahead of a crucial vote for control of the USDH stablecoin ticker.

user avatarGiorgi Kostiuk

Why Ethereum Developers Earn Half of What They Deserve

chest

Ethereum developers earn about $158,000 annually, significantly below market rates. We explore their motivations and potential risks for the network.

user avatarGiorgi Kostiuk

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.