Buy Crypto- Markets
Futures- Spot
- Copy Trade
- Earn
- More
NPM Developer Account Attacker Currently Suspected to Have Profited Only Around $20
By: theblockbeats.news|2025/09/09 10:42:44
0
Share
BlockBeats News, September 9th, according to CertiK Alert monitoring, developer Qix's NPM account was targeted in a phishing attack, with the attacker injecting malicious code into npm. According to Security Alliance, the attacker seems to have only profited about 0.05 USD worth of ETH and 20 USD worth of Meme coin.
Previously reported, Ledger CTO Charles Guillemet posted, "A large-scale supply chain attack is currently taking place: a well-known developer's NPM account has been compromised. The affected package has been downloaded over 1 billion times, which means the entire JavaScript ecosystem may be at risk. The malicious code works by silently modifying cryptocurrency addresses in the background to steal funds."
You may also like
Once you're over 25, you're already too old to be playing with meme coins.
Pump.fun, the world's largest 24-hour online esports platform
Four New Frontlines Post Ceasefire | Rewire News Daily Brief
Rate Cut Window Pushed Beyond Year End
Holmez accepts Bitcoin for toll payment, how much can Iran earn?
When you stretch the numbers and do the math, the answer turns out to be unexpectedly small
When No One on the Team Wants to Sell: The Valuation Game at Anthropic Enters the “Seller Disappearance” Stage
Anthropic's stock, priced at $350 billion, some want to buy but can't buy enough, some can sell but unwilling to sell.
Anthropic's new product, powerful enough to make the AI Agent Infrastructure team unemployed?
All-inclusive infrastructure, pay-as-you-go pricing, a cloud-based AI agent working for you 24/7.
Trump Admin's $950 Million Bet on Oil Price Plunge Before Ceasefire Turned Crude Market into Insider Trading Heaven
19:45 GMT is a tricky timepoint
Why Did Trump Take the US into War with Iran?
Here is the inside story of how he made this key decision
From Threat to Ceasefire: How Did the U.S. Lose Its Dominance?
A war that cannot be won must be negotiated.
How long can the Ethereum ecosystem survive after the launch of Mythos?
AI dimensionality reduction strikes Ethereum, Mythos instantly breaches cross-contract vulnerabilities rendering traditional audits ineffective, and $68 billion in locked funds faces a life-and-death test of "defensive vacuum."
Morning News | Yi Lihua establishes AI fund OpenX Labs; Pharos Network completes $44 million Series A financing; Iran demands that Hormuz tankers pay Bitcoin as tolls
Overview of Important Market Events on April 8th
Ray Dalio's new article: The world is entering a war cycle
We are in a world war that will not end in the short term.
IOSG: When Fintech Meets Crypto Native: The Next Decade of Digital Finance
Header: FinTech is increasingly integrating stablecoins and blockchain infrastructure into core products, reshaping the global payment landscape.
They knew in advance that Trump would tweet about a ceasefire, entered with $20k, and exited with $400k.
They turned the war into a compounding investment
The biggest bottleneck in DeFi development
Today, the biggest threat facing DeFi is not just market conditions or liquidity; in terms of security, it also requires more than just preventing code vulnerabilities, because spies may be lurking nearby.
CZ Memoir Released: Reveals a Large Amount of Industry Insider Information, Prompting Intense Rebuttal from Xu Mingxing
As one of the most influential figures in the cryptocurrency industry today, Zhao Changpeng has personally experienced the difficult development journey of Binance and the cryptocurrency industry in its early years, which brings many little-known insider stories and details to this book, adding plen...
a16z: After securities are on the blockchain, why will intermediary institutions be replaced by code?
Writing transactions and settlements into code, the securities market begins to break free from intermediaries.
XRP Tokyo Is Here: What We Learn and What’s Next for XRP Price
Key Takeaways: Ripple’s 2025 XRP Tokyo event highlights a projected $33 trillion on-chain stablecoin volume by 2026. Significant…
Solana’s Future: Navigating the $285M Hack, Rug Pulls, and Milei Libra Scandal
Key Takeaways: Multiple Crises: Solana faces a $285 million hack, allegations of rug pulls, and the Milei Libra…
Once you're over 25, you're already too old to be playing with meme coins.
Pump.fun, the world's largest 24-hour online esports platform
Four New Frontlines Post Ceasefire | Rewire News Daily Brief
Rate Cut Window Pushed Beyond Year End
Holmez accepts Bitcoin for toll payment, how much can Iran earn?
When you stretch the numbers and do the math, the answer turns out to be unexpectedly small
When No One on the Team Wants to Sell: The Valuation Game at Anthropic Enters the “Seller Disappearance” Stage
Anthropic's stock, priced at $350 billion, some want to buy but can't buy enough, some can sell but unwilling to sell.
Anthropic's new product, powerful enough to make the AI Agent Infrastructure team unemployed?
All-inclusive infrastructure, pay-as-you-go pricing, a cloud-based AI agent working for you 24/7.
Trump Admin's $950 Million Bet on Oil Price Plunge Before Ceasefire Turned Crude Market into Insider Trading Heaven
19:45 GMT is a tricky timepoint
App