Supply Chain Attack Hits Solana Library, Stealing Private Keys
Experts at Socket have reported a significant supply chain attack targeting the popular library @solana/web3.js, available via npm. Malicious versions 1.95.6 and 1.95.7, containing code designed to steal private keys, were used to drain...
