
Malicious Injective npm package update exposed private keys to hackers over 300 times.
A compromised update to the Injective developer npm package was downloaded over 300 times, exposing private keys and seed phrases through fake telemetry. The malicious code intercepted wallet key-generation functions and sent sensitive data to a fake...

