1inch web app compromised, losses to be reimbursed
1inch, a decentralized exchange aggregator, was compromised after attackers injected malicious code into an animation library update, prompting users to connect their wallets to a crypto drainer.
31 Oct 08:23 · crypto.news
SaaS animation platform LottieFiles alerts users to crypto threats
LottieFiles revealed a supply chain compromise in which malicious code could lure users into connecting crypto wallets, potentially leading to asset theft
31 Oct 10:50 · crypto.news
LottieFiles hit in npm supply chain attack targeting users' crypto
LottieFiles announced that specific versions of its npm package carry malicious code that prompts users to connect their cryptocurrency wallets so they can be emptied.
31 Oct 09:02 · BleepingComputer
Opera browser had a major security flaw that could have exposed all your details, so patch now
An add-on could inject malicious JavaScript to overly permissive APIs
31 Oct 15:29 · TechRadar
Animation Tool Lottie Player Hit by Supply Chain Attack, Causes $723K Bitcoin Theft - Decrypt
At least one individual has lost 10 BTC after unknowingly signing a phishing transaction linked to the breach.
31 Oct 05:34 · Decrypt
New Windows Warning As Hacker Breaks Google Chrome 2FA Security Encryption
Hackers can now bypass the encryption brought in by Google with Chrome 127 to prevent the theft of authentication cookies. Here’s what you need to know.
31 Oct 00:00 · Forbes
Hackers steal 15,000 cloud credentials from exposed Git config files
A global large-scale dubbed "EmeraldWhale" exploited misconfigured Git configuration files to steal over 15,000 cloud account credentials from thousands of private repositories.
30 Oct 14:00 · BleepingComputer
last updated on 1 Nov 01:12