On September 17, SlowMist Technology’s Chief Information Security Officer, 23pds, reported that attackers exploited the NPM supply chain, embedding malicious scripts in SVG files linked to decentralized platforms.
The attackers used XSS pop-ups to trick DApp users into signing transactions, compromising their assets.
This incident underscores a critical need for improved security measures across the decentralized application landscape.
Leave a Reply