Ledger
Ledger CTO: Massive NPM Supply Chain Attack Hijacks Popular Packages to Steal Crypto
Massive npm supply chain attack compromises 2+ billion weekly downloads with crypto-stealing malware. Sophisticated 'crypto-clipper' targets Bitcoin, Ethereum & more through popular JavaScript packages. Developers urged to audit dependencies immediately