Bitcoin and Cryptocurrency’s most popular wallet companies spoke about the chain of wallet conditions. The statement came on September 8th after knowledge of attacks on the software supply chain via JavaScript’s NPM (node package) was made public.
As reported by Cryptonotics, a group of computer vulnerability researchers (written in the name of JDSTAERK) discovered a malicious code distribution for a tool that accumulates more than 47 million fires per week.
This code is especially activated when it detects the presence of a cryptocurrency wallet, such as Metamusk. Change the destination direction of the funds during the transaction.
The Wallets Ledger and Trezor teams argued that their custody products did not suffer from vulnerability to NPM attacks.
Trezor says his wallet does not contain vulnerable technology in his firmware.
On their part, the ledgers are encouraged to make sure their wallets are “not dangerous and not at risk” and use their features.”Make your signature clear«I remember that Physical hardware barriers protect against software vulnerabilities.
The next wallet also came out of the attack and checked the wallet company with X’s account. The podcast, known as the BTC session, put together most of them in a single post.
- Cove Wallet
- Nunchuk
- Aqua wallet
- Blockstream Jade
- Sparrow wallet
- Wasabi wallet
- Cold Card
- Spector Wallet
- Electrum wallet
- Foundation Passport
- Seed Signer
- Bitcoin Keeper
- Cake wallet
- Bitbox02
- Bit key
- Exodus
- Blue wallet
- Tangem Wallet
- Trust Wallet
- Keystone
Researchers known as Rani Haddad use Arkhan Intelligence, a chain transaction tracker, to track hacker wallets that have compromised NPM repository.
On September 8, hours after JDSTAERK detected a mass attack, the hackers had only stole $159. At the time of writing, at the time of writing, Hackers’ wallets only last about $500.
The limited amount of funds stolen by the attacker suggests, potentially speaking, that the cryptocurrency wallet was unaffected.
However, you will need to wait for official statements from other companies involved. When interacting with cryptocurrency networks, it is recommended that you carefully check the transaction before signing using the physical wallet screen.