News

The Hacker News4d
Ripple's xrpl.js npm Package Backdoored to Steal Private Keys in Major Supply Chain Attack
xrpl.js is a popular JavaScript API for interacting with the XRP Ledger blockchain, also called the Ripple Protocol, a ...
Ripple NPM supply chain attack hunts for private keys
Targeting NPM is an increasingly popular method of launching supply chain attacks for cybercriminals, primarily because of ...
Ripple's recommended XRP library xrpl.js hacked to steal wallets
The recommended Ripple cryptocurrency NPM JavaScript library named "xrpl.js" was compromised to steal XRP wallet seeds and ...
Ripple cryptocurrency software library hit by major security issue, wallets under threat
A malicious actor used a compromised Ripple dev account to publish commits to NPM The commits would grant access to people's ...
The Currency Analytics4d
XRP Security Breach Exposes Private Keys in xrpl.js Attack
XRP's xrpl.js library was compromised in a supply chain attack, exposing private keys. Ripple urges immediate update to ...
The Currency Analytics6d
Ripple CTO Warns of XRP Wallet Risk Amid Compromised SDK
Ripple CTO David Schwartz warns users about compromised xrpl.js package that could steal private keys. The issue affects ...
BeInCrypto6d
Hackers Target Ripple’s XRP Ledger in a Critical Supply Chain Attack
Ripple's xrpl.js package breach threatens DeFi wallets on XRP. No major thefts reported, and Ripple has deprecated the compromised version.
CoinDesk6d
XRP Ledger Bug Patched After 'Serious' Flaw Spotted in XRPL Library
The issue only affects versions of Node Package Manager (NPM), a site where developers share reusable code for projects.
How Critical XRP Ledger Software Got Compromised With Crypto-Stealing 'Backdoor' In 'Potentially Catastrophic Supply Chain Attack'
XRP holders have been targeted in “a potentially catastrophic” exploit. Efforts to identify the bad actor are underway. The ...