Portsuppe

Injective SDK on npm infected with cryptocurrency wallet stealer

BleepingComputer·2h·Media

Hackers compromised the Injective Labs SDK project's GitHub repository and used it to publish a malicious package on the Node Package Manager (npm) that stole cryptocurrency wallet private keys and mnemonic seed phrases. [...]

Categories cybersecurity · government-security · data-protection
Original source / advisory
Published
7/9/2026, 8:10:00 PM
Fetched
7/9/2026, 9:19:35 PM
Trust
media · 60/100
Language
en