News

The Register on MSN7d
Ripple NPM supply chain attack hunts for private keys
A mystery thief and a critical CVE involved in crypto cash grab Many versions of the Ripple ledger (XRPL) official NPM ...
Security Boulevard10h
Revived CryptoJS library is a crypto stealer in disguise
An illicit npm package called 'crypto-encrypt-ts' may appear to revive the unmaintained but vastly popular CryptoJS library, ...
The Hacker News5d
Ripple's xrpl.js npm Package Backdoored to Steal Private Keys in Major Supply Chain Attack
xrpl.js is a popular JavaScript API for interacting with the XRP Ledger blockchain, also called the Ripple Protocol, a ...
Owner, manager of Nebraska Precious Metals arrested as result of monthslong investigation
The Douglas County Sheriff's Office arrested the owner and manager of a Nebraska gold dealer after serving a search warrant Thursday morning.
ExtraHop® Disrupts Network Detection and Response Market with Industry’s First All-in-One Sensor
ExtraHop, a leader in modern network detection and response (NDR), today launched the industry’s first all-in-one sensor ...
Ripple's recommended XRP library xrpl.js hacked to steal wallets
The recommended Ripple cryptocurrency NPM JavaScript library named "xrpl.js" was compromised to steal XRP wallet seeds and ...
CoinDesk7d
XRP Ledger Bug Patched After 'Serious' Flaw Spotted in XRPL Library
The issue only affects versions of Node Package Manager (NPM), a site where developers share reusable code for projects.
EXCLUSIVE: Vivani Medical Collaborates With Okava To Expand Development Of GLP-1 Therapy For Dogs
Vivani Medical and Okava expand GLP-1 therapy research to dogs, aiming to advance long-acting treatments for cardiometabolic ...
Ripple cryptocurrency software library hit by major security issue, wallets under threat
A malicious actor used a compromised Ripple dev account to publish commits to NPM The commits would grant access to people's ...
Crypto News7d
Hacker Tries to Attack XRP Ledger Using Developer Access, Security Team Stops It
A security crisis was avoided after a hacker exploited a developer’s access token to inject malicious code into a toolkit ...
Developer Tech15d
Masquerading payment npm package installs backdoor
Cybersecurity researchers at Socket have uncovered a malicious npm package that hijacks server control during payment ...
The Hacker News11d
Rogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems
Cybersecurity researchers have uncovered three malicious packages in the npm registry that masquerade as a popular Telegram ...